On October 11, 2023, The United States Defense Information Systems Agency (DISA) published their Security Technical Implementation Guide (STIG) for Red Hat Enterprise Linux (RHEL) 9. A compliance automation profile is now available, reducing the time and complexity necessary to bring systems into compliance.

Red Hat’s compliance automation profile for RHEL 9 is aligned with the Version 1, Release 1 (V1R1) of the STIG. Using this profile, organizations can more swiftly increase their systems compliance status by utilizing the scap-security-guide package with its pre-built Ansible Playbooks and the OpenSCAP scannerRed Hat Insights or Red Hat Satellite for existing RHEL installations. This content can also be used with the RHEL Installer and Image Builder for new RHEL installations.

DISA STIGs are designed to be general guidance for securing systems that connect to  United States Department of Defense systems or networks. System administrators should work with their Information System Security Officer (ISSO) to make sure their systems are aligned with the required controls based on the STIG and mission requirements. Customers using Insights can use it to tailor the STIG profile in alignment with system and workload requirements.

As part of our broader commitment to supporting customers, Red Hat offers compliance automation content for RHEL systems operating in other regulated industries, including:

  • Center for Internet Security (CIS)
  • Australian Signals Directorate Essential Eight

Automate your compliance

Start using pre-built Ansible content to help make systems compliant and learn how Red Hat Satellite can be used for continual monitoring of your compliance status across your enterprise.


Matthew is a Software Engineer on the Red Hat Enterprise Linux Security Compliance team. Matthew joined Red Hat in 2021 and focuses on creating automation to help customers in regulated industries achieve compliance faster.

Read full bio