Need a expert level SaltStack configurator developed on top of Python
This is a brief overview.
Every organization has some basic security baselines, such as default user/pass should not be there, default sites should not be there on the browsers, default service should not be running on each server etc. Similarly we have such security standards with servers such as IIS, OS, Web server, Linux, DB servers, network devices, there is a baseline security standards. The challenge we are facing is that every year they have to review a lot of servers and devices per the security standards.
The goal is to automate this process using SaltStack which can connect to the remote server, check settings to see if it is compliant to the security standards and produce a report on the security audit. In the report, if compliant say compliant and reason and if non compliant reason for non compliant for each server as well as group of servers.
Ability to schedule the script to scan for server...