diff --git a/data/workshop/README.org b/data/workshop/README.org index da37692..c1d4e01 100644 --- a/data/workshop/README.org +++ b/data/workshop/README.org @@ -8,7 +8,7 @@ This document captures the steps required to set up an instance of the workshop. * Log in to cluster #+begin_src tmux -oc login --web https://api.cluster-dlljg.dlljg.sandbox1289.opentlc.com:6443 +oc login --web https://api.cluster-zwm4h.zwm4h.sandbox1572.opentlc.com:6443/ #+end_src * Update cluster logo diff --git a/data/workshop/exercise5.mdx b/data/workshop/exercise5.mdx index 27c3ee2..64a40de 100644 --- a/data/workshop/exercise5.mdx +++ b/data/workshop/exercise5.mdx @@ -10,7 +10,7 @@ summary: "Let's apply an industry benchmark!" The first two days of the consulting engagement at ACME have whirled by. You're working remotely today for day three and are pairing up with Melissa from the banks compliance squad. -On the agenda today is to harden the `acmd-prd-hub` cluster by understanding and remediating compliance against the [NIST 800-53 benchmark](https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r5.pdf). +On the agenda today is to harden the `prd-acme-hub` cluster by understanding and remediating compliance against the [NIST 800-53 benchmark](https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r5.pdf). The bank must comply with this specific benchmark to meet the requirements of their regulation legislation known as APRA (ACME Penny Regulation Act, 1998). @@ -29,3 +29,16 @@ Documentation you may find helpful is: - https://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/security_and_compliance/compliance-operator#installing-compliance-operator-web-console_compliance-operator-installation + +## 5.2 Scheduling a compliance scan + +Operator installed it's time to join the virtual meeting with Melissa and step her through how to run a compliance scan against NIST 800-53 and visualise results using the Red Hat Advanced Cluster Security Dashboard. + +Create a new scan schedule named `prd-acme-hub-nist-daily` targeting the appropriate benchmarks. + + +|![compliance report](/static/images/security/report.png) | +|:-----------------------------------------------------------------------------:| +| *Viewing a compliance report in Red Hat Advanced Cluster Security* | + + diff --git a/public/static/images/security/report.png b/public/static/images/security/report.png new file mode 100644 index 0000000..27eb7d6 Binary files /dev/null and b/public/static/images/security/report.png differ