I am having the same issue as Michael. I have a server with NCM on a non-internet connected system, and I am unable to import the .xml files.
I am an Administrator on the machine as well. I feel many of the people that will be downloading these STIGs have systems deployed on servers that are either non-internet connecting or their Administrative credentials will prevent them from browsing the Internet. Can you load the generic NCM exports for the STIGs?
i have tried to download them via the shared on thwack site and i get a set of XML errors after i put in my user and PW. other policies DL ok but all of yours error out?
also when i pulled all of the files i might be able to use i noticed that your STIG-V8R19-CSCO-OS-L2SW - VTY and Console entry is actually the user access file when you go to download it.
The problem is caused by some extra text that gets appended to the XML when the report is exported from NCM directly to thwack.
Before we find a permanent solution, may I ask CourtesyIT to re-post the reports exported as file?
Whoever needs these reports immediately may download them and delete the extra characters after the </PolicyReport> tag.
I'm in the same boat with one of my networks completely air gapped PL2...
I wonder what's adding all that text to the xml files???
Perhaps we need a forum for all thinks SW related to dealing with air gapped networks, STIG's, nispom compliance and stuff like that? It seems like enough of us and even multiple mvp's are all in the same situation... I know it's not so quick and easy if your Orion isn't connected to the internet... it's getting better but we've had to fight with this since version 8 of NPM. I voted up your bulk import too goodz.
I have a related question... I'm working on a new implementation in a MLS network. From what I was told applying the STIG to the NPM server broke just about everything... can you peeps give me some insight into how you've handled this? I mean we all want a functioning Orion and to make our network as audit ready as possible. Do you have a bunch of exceptions in place? This setup consists of NPM, NTA, NCM, and EOC. Everything is windows 2012 R2 Server and SQL Server 2012 if that makes any difference. Not trying to hijack your thread Eric... I plan to implement your dashboards at some point too... I'm just curious about the problems you've run into with the STIGs and Orion. Everything is snmpv3 too if that makes any difference.
SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 150,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process. Learn more today by joining now.