OpenSCAP is used in Red Hat Satellite 6 for automated vulnerability assessment and compliance audit. If you plan to manage compliance of a large-scale infrastructure, Red Hat Satellite 6 is the recommended solution.
See Foreman-OpenSCAP homepage and Foreman-OpenSCAP GitHub page for more details.
Centralized policy management
Set-up organization defined targeting (connect sets of systems, policies and time schedules)
Collect & archive OpenSCAP audit results from your infrastructure
Set-up periodical audits
Search for systems which have not been audited
Display audit results
Search audit results
Search for non-compliant systems
Satellite 5 is the older incarnation of the Red Hat Satellite product that is still very commonly used. The SCAP integration allows you to centrally manage compliance of your machines.
Spacewalk Test Results
Schedule XCCDF scans for a given machine
Schedule XCCDF scans through Spacewalk web (either for a single machine or for SSM)
View a summary of all scans on the web (for a single machine or your entire infrastructure)
Obtain a summary of the scan results
View a structured scan result on Spacewalk web
Fetch scan results
Perform searches via Spacewalk Web