...
- Note: most content comes from external sites to Arellia; typically nist.gov. The checklist and some of the CVE data comes from portal.arellia.com. This can be seen by searching arellia-checklist-1.4.xml for portal.arellia.com.
- Re-run each of the "XXX Update tasks" by right clicking on each of the failed task runs and choosing Start Now. There are 10 of these tasks to run. See the following screen shot showing where these tasks can be found.
- Use the SCAP Data Source Update Summary report to confirm they have been registered. At the time of writing this there are 16 data sources.
- The following is a direct link to the report - modify the host name as required.
- http://localhost/Ams/SecurityManager#/Reports/56e76749-b12e-45f8-af58-05a10e9d7721
...
- There is a page on the Arellia Data Portal that shows these links. See View Arellia Checklist. Or you can go direct to the various official sites.
- To set expectations - profile imports can take a while, whether connected to the internet or not - on the order of an hour for a handful of profiles.
To install arellia-checklist-1.4.xml, either download it from http://portal.arellia.com/data/scap/arellia-checklist-1.4.xml, or download it on a machine that is connected to the Internet and then copy it from the program data folder C:\inetpub\wwwroot\Ams\App_Data\SAS\ScapChecklists. Then click Try Again and you'll see the list of available checklists.