It depends on exactly what you what to get out of a policy management tool. The market for these sorts of products, both open source and proprietary, is not 100% mature. In the open source world, the best tools for this are probably cfengine and Puppet. These both allow the management and configuration of remote hosts and the capability to remotely detect and remediate deviation from a configuration standard, policy or Standard Operating Environment (SOE).
Related Q&A from James Turnbull
A user wants to implement OSSEC on a Windows server because he has no server side Linux operating system.continue reading
Solaris 10 Trusted Extensions and SELinux are best suited to different system requirements and administrator skill sets. Our security expert explains...continue reading
Configuring spam filters Spamassassin and dspam together in the email server Postfix is easy with the resources listed by our security expert.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.