Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

About the Compliance Benchmarks Page

To access this page, click Trust > Compliance > Benchmarks.

Routing Director automatically monitors the hardware and software in the network for compliance with the rules defined in the benchmarks documents. Benchmarks documents consist of compliance rules that help you protect devices, software, and networks from cyber threats. The benchmark document contains profiles which are based on the rules defined in the document. Profiles determine how rules are enforced on the network devices to obtain the desired level of compliance. To view the default benchmark document, visit the CIS Benchmarks page.

Tasks You Can Perform

You can perform the following tasks from this page:

  • View details of all benchmarks documents.

    To view rules of a benchmark document, select a benchmark document and click More > View Rules. Alternatively, click a benchmark document to view its rules.

    The Rules page appears displaying the information about the rules defined in the selected benchmark document. For more information, see Table 1.

    In addition to the fields listed in the Table 1, you can select a profile and view details of the listed rules.

    • Select a profile to view the rules defined for that profile.

      The default benchmark document contains two predefined profiles – Level 1 and Level 2. The Level 1 profile is the base recommendation that doesn’t cause much performance impact. The Level 2 profile is meant for environments, such as defense systems, where security is of utmost importance and can sometimes impact performance if due care is not taken during implementation.

    • View details of a rule.

      To view details of a rule, select a rule and click More > Detail. Alternatively, hover over the rule and click the Details icon.

      The Rule Detail pane appears on the right side of the page displaying information such as title, rule ID, and its description. You can also view information about the actions that you can take if a device does not comply with the rules defined in the benchmark document.

  • Create a benchmark document—To create a benchmark document, see Create a Benchmark Document.

  • Delete a benchmark document.

    You cannot delete a default or any benchmark document that is not used for a compliance scan. The default benchmark document is defined by CIS.

  • Sort, resize, or re-arrange columns in a table (grid).

  • Show or hide columns in the table or reset page preferences, using the vertical ellipsis menu.

  • Search by using keywords—Click the search icon (magnifying glass), enter the search term in the text box, and press Enter. The search results are displayed on the same page.

  • Filter the data displayed in the table—Click the filter icon (funnel) and select whether you want to show or hide advanced filters. You can then add or remove filter criteria, save criteria as a filter, apply or clear filters, and so on. The filtered results are displayed on the same page.

  • Set the number of rows to be displayed in the table—Click the Display drop-down at the bottom right-corner of the table to set the number of rows (15, 30, 50, or 100) to be displayed in the table. The default number of rows is 15.

  • Use the arrow heads to traverse through the pages or enter a page number to view the entries listed on that page.

    Table 1: Fields on the Compliance Benchmarks Page

    Field

    Description

    ID

    Unique identifier that Routing Director generates for the benchmark document.

    Source

    Source of the benchmark document.

    For example, Center for Internet Security (CIS).

    Benchmark Title

    Title of the benchmark document generated by Routing Director.

    Profile ID

    Unique identifier that Routing Director generates for the selected profile.

    Profile Title

    Title of the profile level selected for the scan.

    The default benchmark document contains two predefined profiles – Level 1 and Level 2.

    Profile Description

    Description of the selected profile level.

    Group ID

    Unique identifier that Routing Director generates for different groups in the network within the benchmark document.

    Grouping

    Grouping of the rules in the benchmark document. For example, Firewall.

    Rule ID

    Unique identifier that Routing Director generates for each rule in the benchmark document. For example, 1.0.

    Title

    Title of the rule defined in the benchmark document.

    You can edit the title of a rule when creating a benchmark document.

    Description

    Description of the rule.

    Fix

    Fix or information about the actions you can take if a device does not comply with the rules defined in the benchmark document.

    Weight

    Weight value denotes the relative importance or score of the rule.

    A rule with a higher weight is more important than a rule with a lower weight.

    Selected (True | False)

    Indicates whether the rule is selected in the benchmark document:

    • True—The rule is selected and enabled for the compliance scan.

    • False—The rule is not selected for the compliance scan.

    You can change the state of the rule when you create a benchmark document.

    Role (Unscored | Full)

    Indicates whether the rule has affected the compliance score:

    • Full—The rule has affected the compliance score.

    • Unscored—The rule has not affected the compliance score.

    You can edit the role when you create a benchmark document.