Skip to content

CIQ Documentation Hub

CIS Benchmarks

CIQ Documentation Hub

Home
Rocky Linux from CIQ (RLC)
Rocky Linux from CIQ (RLC)
- Overview
- Getting Started
- Installation
  Installation
- Repository Architecture
- Version Pinning & LTS
  Version Pinning & LTS
  - Version Pinning & Long Term Support
- FIPS 140-3
  FIPS 140-3
  - FIPS 140-3 Compliance
- Migration Guide
- FAQs
Ledger Pro
Ledger Pro
- Overview
- Installation Guide
- Admin Guides
  Admin Guides
  - Admin Section
  - Configuration Of Ascender
- User Guides
  User Guides
- Release Notes
  Release Notes
  - v1.0
- FAQs
RLC-Hardened
RLC-Hardened
- Overview
- Getting Started
- Installation
  Installation
- Admin Guides
  Admin Guides
- Cloud Deployment
  Cloud Deployment
- Security
  Security
  - Overview
  - FIPS 140-3 Certification
    FIPS 140-3 Certification
    
    Validated Modules
    
    Enabling FIPS Mode
  - Security Profiles
    Security Profiles
    
    DISA STIG
    
    CIS Benchmarks CIS Benchmarks
    Table of contents
    
    Overview
    
    What to Expect
  - Verification Scripts
- Release Notes
  Release Notes
  - RLC-H 9.6-20251028 Release Notes
  - RLC-H 9.7-20260131 Release Notes
- FAQs
CIQ Portal
CIQ Portal
- Overview
- Getting Started
- User Guides
  User Guides
- Troubleshooting
  Troubleshooting
  - Common Issues
- FAQs
- Glossary
Depot
Depot
- Overview
- Depot Client
  Depot Client
  - Getting Started
    Getting Started
    
    Installation
    
    Host Setup
    
    Container Images
    
    Maintenance
- How-To Guides
  How-To Guides
Resources
Resources
- Compliance
  Compliance
  - FIPS 140-3

CIS Benchmarks Profile¶

Warning

This profile is currently in development.

Overview¶

The Center for Internet Security (CIS) Benchmarks are consensus-based configuration guidelines for hardening operating systems and applications. RLC Pro Hardened will include a CIS Benchmarks profile that applies these hardening rules, providing a security baseline suitable for general-purpose enterprise environments.

What to Expect¶

Level 1 and Level 2 profiles to match different risk tolerance and operational requirements
Coverage for core OS hardening including filesystem permissions, service management, network parameters, and logging
OpenSCAP-based validation to verify CIS compliance status
Compatibility with FIPS mode for organizations that require both CIS hardening and FIPS 140-3 validated cryptography

Status: Coming Soon