The linux_secured
module is a powerful security solution that helps you ensure your Linux systems are compliant with the CIS benchmarks. linux_secured
implements all the necessary security controls outlined in the CIS benchmark for Linux. This means that you can rest assured that your systems are adhering to the highest security standards. This module will help you:
- Sleep better at night knowing your systems are more secure.
- Feel confident that you’re doing everything possible to protect your systems.
- Save time on Linux system security management.
- Face the auditor with much confidence
- Automate the application of security best practices.
- Easily upgrade to new versions and stay up to date with the latest security recommendations.
Whether you are an individual, a small business owner, or a large enterprise, linux_secured
is the perfect solution to keep your Linux systems safe and secure. linux_secured
can be used as a standalone solution with Puppet, or it can integrate seamlessly with the InControl console. This gives you the flexibility to use the product in the way that best suits your needs.
We understand that every organization has unique security requirements, and that’s why we’ve made it easy for you to customize linux_secured
to your specific needs. The module is highly configurable, allowing you to tailor it to your organization’s security policies and procedures.
In addition to enforcing security configuration (what Puppet normaly does), linux_secured
includes a set of classes that are designed for validating the configuration of your systems, without changing them. This powerful tool provides you with detailed information on where your systems are not adhering to the CIS benchmark. This information is critical in helping you identify and remediate any compliance issues.
We understand the importance of having a security solution that supports all major Linux versions. That is why linux_secured
is designed to be compatible with all major Linux distributions, including Red Hat, OracleLinux, Ubuntu, CentOS, Debian, and SUSE. The current version of linux_secured
supports Red Hat and OracleLinux. Support for other Linux distributions is planned for Q2 2023.
At this point in time it supports the following CIS benchmarks:
With linux_secured
, you can rest easy knowing that your Linux systems are compliant with the highest security standards.
Benefits of InControl integration
What are the benefits of integrating with InControl? By providing a centralized location, the InControl console helps users manage and track compliance and vulnerability issues with ease. InControl receives reports from linux_secured
and other security modules, offering an integrated view and management system for compliance and vulnerabilities not only for Linux, but also for Windows, Oracle databases, Microsoft SQLServer, Postgres, IBM DB2 databases, and cloud environments.

Overall, InControl is an essential tool for organizations seeking to maintain regulatory compliance and ensure the security and reliability of their systems and infrastructure. Its advanced algorithms, user-friendly design, and customizable alerts and notifications make it a perfect solution for organizations of all sizes and industries.
Our modules are based on an annual subscription(an entitlement). When you purchase an entitlement:
- you are allowed to use the module on the named nodes you purchased the subscription for;
- you get full support on usage and any issues you have;
- we will guide you towards a working setup;
- Are allowed to use the latest and greatest version without any extra charge.
We will make sure the modules keep working with the latest versions of Puppet en the supporting products like Oracle IBM MQ or WebLogic.
We currently have the following licensing methods for you:
1) Free when used on VirtualBox
2) Per node per year subscription
3) Custom licensing
1. Free when used on VirtualBox
This module is Free when used on a VirtualBox testing machine. The software checks if you are using VirtualBox and allows usage. No need to get any licenses from us to get going. Just download the module from our own forge and get going. To download the module use:
puppet module install
--module_repository=http://forge.enterprisemodules.com
enterprisemodules-modulename
2. Per node per year subscription
Our basic licensing model requires a subscription per node. The subscription is valid for a year. To make this work, we need you to send us the node name of the system you want to use the module on. (Not the puppetmaster, but the system where the agent is running.). Based on this information we will send you a file containing the entitlement for your node(s). You can purchase the entitlement in the shop or you can contact us. After you have ordered this module, you will receive an entitlement file. This file contains the information needed to run the software on your Puppet machine (agents).
3. Custom licensing
Our license manager is very flexible. If you have special requirements, please contact us so we can discuss other options.
When you have questions about licensing, please contact us or check our licensing FAQ
The linux_secured
module requires:
- Puppet version 5.0 or higher. Can be Puppet Enterprise or Puppet Open Source
- A license for the
linux_secured
module.
- A valid entitlement for usage.
- Runs on most Linux systems.
- Windows systems are NOT supported