This repo provides example JSON body sections to enable and disable the CIS Benchmarks for Azure in Lacework when calling the PATCH method on https://lacework-tenant.lacework.net/api/v1/external/recommendations/azure API Endpoint via the Lacework CLI
This script can be used to bulk enable/disable compliance checkers on your target environment.
- Lacework CLI Installed & configured, targeting the desired Lacework tenant (To install and configure the Lacework CLI, follow the Lacework CLI docs)
- Python 3.8.10 installed (we recommend using pyenv virtualenv to manage python versions).
Provided you have pyenv virtualenv installed, you can use
./pyenv-init.shto install and activate the required version. - awk installed on your CLI
python azure-cis-config.py [disable_cis_10|enable_cis_10|disable_cis_131|enable_cis_131|enable_all|disable_all] [lacework-tenant]
Where the first argument is the action you wish to perform, and the second argument is your lacework tenant (without the .lacework.net)
If the Lacework CLI is not configured to the same lacework-tenant provided in the ARGs the command will fail.
This script also generates an updated version of the checker maps based on the recommendations(checkers) deployed to the target environment.