03-22-2021 08:52 AM - edited 03-22-2021 08:53 AM
This quickplay solution provides a rapid API-based CIS benchmark assessment of the Palo Alto Networks NGFW
Video coming soon...
Playing this solution requires:
Github Location: https://github.com/PaloAltoNetworks/cis-benchmarks.git
Github Branches: main
Product Versions Supported: PAN-OS 9.0/9.1 based on the benchmark version support
The CIS benchmark v9.0.0 provides a description, rationale, audit, and remediation steps for a multitude of NGFW configuration benchmarks. Manually assessing the complete set of benchmarks can be highly time consuming.
This quickplay allows the user to leverage the NGFW API to query configuration and system state information, assess the various benchmarks, and then present the user with an online report showing pass/fail conditions. Not intended for an official audit, the quick preview allows for remediations ahead of a full audit or to provide periodic checks.
Note: This CIS quickplay does not replace a recommended Palo Alto Networks Best Practice Assessment (BPA). For more information, please visit the BPA Live Community
The output report provides a complete set of contextual information based on the CIS benchmark document:
Some of the benchmark results are flagged as 'action required'. This denotes one of two outcomes: