Cloud Compliance - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

Cortex XSIAM Administrator Guide

Cortex XSIAM
Creation date
Last date published
Administrator Guide

Learn more about Cloud Compliance in Cortex XSIAM.

Cloud Compliance performs the Center for Internet Security (CIS) benchmarking compliance checks on endpoint resources for Linux and Kubernetes agents. Cloud Compliance is mainly designed for cloud based Linux assets and Kubernetes hosts, but can also provide the same metric data for on-prem Linux appliances. As a result, Cloud Compliance provides you with an overview of violations in terms of Cloud Security posture on your Linux boxes in terms of Linux and container compliances, and also for Kubernetes, when applicable.

To receive data in the Cloud Compliance page, you need to configure your Linux agent settings profile to collect this data by selecting under XDR Pro the enable cloud compliance collection option. The endpoints require this data collection option enabled for around 12 hours to set the benchmarks and display the results in the Cloud Compliance page.