Adobe

A composite DSC resource to manage Adobe STIG settings

Requirements

An Adobe product installed.

Syntax

Adobe [String] #ResourceName
{
    [DependsOn               = [String[]]]
    [PsDscRunAsCredential    = [PSCredential]]
    AdobeApp                 = [String]
    [StigVersion             = [Version]]
    [Exception               = [Hashtable]]
    [OrgSettings             = [Object]]
    [SkipRule                = [String[]]]
    [SkipRuleType            = [String[]]]
    [SkipRuleSeverity        = [String[]]]
}

We can see above the AdobeApp parameter is REQUIRED (not surrounded by []) while all other parameters are optional. Here is the minimal configuration given the above syntax

Configuration myConfig
{
    Import-DscResource -ModuleName PowerStig
    Adobe AdobeBaseline
    {
        AdobeApp = 'AcrobatReader'
    }
}

. myConfig -OutputPath "c:\temp" # calls the configuration and creates a .mof file at the output location if output location is provided (optional)

The above script assumes you have a c:\temp directory and that you have PowerSTIG installed.

Copy and paste the above configuration scipt into the PowerShell ISE or any IDE that supports PowerShell, and run it. The result will be a .mof file named localhost.mof that contains a number of rules based on the DSC resources that are automated.

Below is a configuration that includes the version of the STIG you are using to configure your endpoint. To find out how to determine version/s you have available, see GetVersionInfo

Configuration myConfig
{
    Import-DscResource -ModuleName PowerStig
    Adobe AdobeBaseline
    {
        AdobeApp = 'AcrobatReader'
        StigVersion = [Version]'2.1'
    }
}

. myConfig -OutputPath "c:\temp"

A more complete example, including optional organizational settings. For more information on organization settings see Customizing Rules

in this example you populare the $MyOrgAdobeSettings hashtable prior to using the variable in the configuration. This example also includes SkipRules, which is a list of rules within that particular STIG that will NOT be processed. You would replace the xxxxxx below with the actual v number for the rule.

$MyOrgAdobeSettings = @{
    
}
Configuration myConfig
{
    Import-DscResource -Name Adobe
    Adobe AdobePro
    {
        AdobeApp    = 'AcrobatPro'
        StigVersion = [Version]'2.1'
        OrgSettings = $MyOrgAdobeSettings
        SkipRule = 'V-xxxxxx', 'V-xxxxxx'
    }

    Adobe AdobeReader {
        AdobeApp    = 'AcrobatReader'
        StigVersion = [Version]'1.6'
        OrgSettings = $MyOrgAdobeSettings
        SkipRule = 'V-xxxxxx', 'V-xxxxxx'
    }

To get a list of applicable values for the AdobeApp paremter run the following:

Import-Module PowerSTIG
Get-Stig -ListAvailable | Where-Object Technology -like '*Adobe*'

example output

Technology        : Adobe
TechnologyVersion : AcrobatPro
TechnologyRole    : 
Version           : 2.1
RuleList          : {}

Technology        : Adobe
TechnologyVersion : AcrobatReader
TechnologyRole    : 
Version           : 1.6
RuleList          : {}

Technology        : Adobe
TechnologyVersion : AcrobatReader
TechnologyRole    : 
Version           : 2.1
RuleList          : {}

Adobe

Adobe

Requirements

Syntax

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!