Context-Specific Security with CFEngine

Context-Specific Security with CFEngine

CFEngine Community Edition is an open source tool used to automate an organization's IT infrastructure. Quoin has implemented CFEngine policies for a number of clients over the years with various needs and varying degrees of complexity. Recently, one of our major retailer customers engaged Quoin to provide an automated solution for security standards compliance across their thousands of servers.  They required a flexible solution in which some CFEngine policies could be run on every server, while others would only be run on servers that fell into specific context categories. After speaking with CFEngine about our approach, they mentioned that they get questions about this kind of scenario often, and asked us to write it up a generalized solution. The article has been published on CFEngine's website, which can be found here: https://cfengine.com/company/blog-detail/context-specific-security-settings/

Categories


Tags