Community: simp

Back to Listing

Steven Pritchard

25 June 2021

We are pleased to announce the latest release of SIMP Enterprise Edition, 6.5.1! This release builds on our previous release with updates to our compliance profiles as well as additional improvements to efficiency and performance. Please see below for the full list of updates.

simp, enterprise, CIS Benchmarks, DISA, compliance

Lisa Umberger

26 February 2021

We are pleased to announce the latest release of SIMP Enterprise Edition, 6.5!! This release comes with added, extensive CIS enforcement and reporting support for both Linux and Windows distributions. This CIS support comes with brand new enforcement certifications for the Linux distributions! In addition, this release comes with added efficiency and performance for both the SIMP Console and SIMP Scanner! Please see below for the full list of features!

programming, open-source, simp, enterprise

Brandon Riden

17 April 2020

Onyx Point is proud to announce the release of SIMP Console 1.3.0.

Key Updates

SIMP Console

  • Added scan triggering
  • Improved upgrade stability
  • Removed the requirement for system-installed Ruby
  • Improved stability of backend features
  • Increased the database integrity via Foreign Keys and Triggers
  • Refactored front-end to utilize JavaScript Promises
  • Added ability to schedule scans


SIMP Scanner

  • Created secure communication between the Scanner and Console via login tokens
  • Provided new content downloader to scan content for each supported platform (CIS/STIG)
  • Added full CIS Scanning support (Note: CIS-CAT needs to be preinstalled and preconfigured)
  • Added ability to save SIMP Scanner logs and XML reports
  • Adapted SIMP Scanner to be run as a daemon to accept Scan-Now/Scheduled scans

simp, simp_console, console, ui, enterprise

Brandon Riden

16 September 2019

Onyx Point, LLC. is pleased to announce that the final release for SIMP 6.4.0-0 is now available.

Community Edition ISOs can be downloaded from our download servers.

Enterprise customers can obtain the Enterprise Edition ISOs using the instructions.

programming, open-source, simp, enterprise

Kara Pritchard

17 July 2019

(IBM - Boulder, CO) “We chose SIMP Enterprise Edition (EE) to provide multi-tenant compliance enforcement for our federal customers. As an existing Puppet Enterprise (PE) environment, deploying SIMP was an easy decision. Our teams found added value in our project through an extended on-site engagement with Puppet Partner, Onyx Point, LLC.

Not only did SIMP EE provide an important solution, but the Partner was also able to upgrade our PE environment and integrate CloudBolt. The added expertise and ease of support throughout this project is what makes us continue to invest in SIMP within our infrastructure.”

Technical Delivery Manager - Infrastructure Automation
Managed Services & Cloud Solutions

simp, enterprise

Dylan Cochran

07 May 2019

SIMP Console 1.0 Available

Today marks a benchmark for SIMP products as we are excited to announce the availability of SIMP Console 1.0.0.!

The SIMP Console provides insight into your system’s continuous compliance posture and integrates data from the SIMP Compliance Engine to visualize the state of your Puppet-applied module parameters.

Out of the box, SIMP Console includes:

  • Support for ingesting XCCDF(SCAP) results from a number of scanning engines
  • Integration with SIMP Compliance Engine (SCE) to provide puppet oriented context information
  • Reports generated in XLS, HTML, and PDF format
  • Notification system for forwarding results to Email and Slack
  • A client side scanning utility that automates scanning and collection for console feed
  • Integration with AD, LDAP, and Google Authentication
  • Full Role Based Access Control (RBAC) and delegation of privileges by assigning users specific roles on a subset of nodes
  • A fully featured plugin system to access/create notification services, scan types, custom reports, and authentication backends

simp, simp-console, console, ui, enterprise

Dylan Cochran

09 April 2019

SIMP Console Beta 0.20.0 Available

We are proud to announce the availability of SIMP Console 0.20.0. This version of the SIMP Console marks the first release containing report generation capabilities. This initial subsystem only supports scap_result reporting in HTML, PDF, and XLSX, but has the capability to be extended to other reporting formats in subsequent releases, and even is part of our plugin API so customers can write their own report generators.

simp, simp-console, console, ui, enterprise

Dylan Cochran

28 March 2019

SIMP Console Beta 0.19.2 Available

We are proud to announce the availability of SIMP Console 0.19.2. This is primarily a bugfix and refactoring release as we work towards a more complete Role-Based Access Control (RBAC) solution.

simp, simp-console, console, ui, enterprise

Dylan Cochran

12 March 2019

SIMP Console Beta 0.18.0 Available

We are proud to announce the availability of SIMP Console 0.18.0. This is primarily a bugfix and refactoring release as we work towards a more complete Role-Based Access Control (RBAC) solution.

simp, simp-console, console, ui, enterprise

Brandon Riden

05 March 2019

A new version of SIMP (6.3.3) is now available. Late in the release process for 6.3.2, a user-lockout bug was discovered in the sssd module. Since we had already uploaded some assets to the download servers, we decided to forego the full release of 6.3.2 and start immediately on 6.3.3. Below you can find updated modules from both versions, as well as links to the changelogs and files.

programming, open-source, simp, enterprise

Dylan Cochran

25 February 2019

SIMP Console Beta 0.17.0 Available

We are proud to announce the availability of SIMP Console 0.17.0. This is primarily a bugfix and refactoring release as we work towards a more complete Role-based Access Control (RBAC) solution.

simp, simp-console, console, ui, enterprise

Dylan Cochran

12 February 2019

SIMP Console Beta 0.16.0 Available

We are proud to announce the availability of SIMP Console 0.16.0. This is the first Beta-ready version of the SIMP Console, and has such contains early functional versions of the core workflow, such as:

  • At-a-glance dashboard for failure/success on folders and subfolders.
  • Hierarchical tree of folders, to group systems scans based on their placement within your organization
  • Ingestion of SCAP scan results from OpenSCAP on Linux platforms using our simp-scanner utility.
  • Mapping SCAP scan results into Puppet settings that can be copy-pasted directly into your Hiera data files.
  • Cross referencing to NIST and STIG controls
  • Local authentication, LDAP authentication, and Google Auth based authentication.

We will be announcing new beta versions roughly every 2 weeks, and will be detailing the specific changes in the release notes section of the email, as well as any specific features we’d like feedback on.

At this stage of the beta program, we are not guaranteeing database backwards compatibility. You may have to rm -rf /var/db/simp/simp-console.db if using sqlite, or drop database and create database if using postgres.

Release Notes

  • Initial feedback on RBAC was that it didn’t match expectations for how RBAC should function, so it is currently disabled in this version of the SIMP Console. It will be enabled in a subsequent version after a redesign.
  • The description of individual findings is difficult to read and understand. This is due to the data being sent from the scanning utilities, and we are working to replace it with prettier ‘markdown’-based text.
  • Copy-to-clipboard does not copy the puppet parameters.


Feedback can be sent by clicking on the ‘Feedback’ link in the user dropdown.

SIMP Console Documentation

The latest revision of all SIMP Console documentation will be found here

Quick Installation Instructions

In order to install simp-console packages from the unstable repository, you need to have a valid SIMP EE or LE license key installed at /etc/simp/license.key

sudo yum install
sudo yum install simp-vendored-ruby
sudo yum install simp-console-0.16.0
sudo service simp-console start

simp, simp-console, console, ui, enterprise

Brandon Riden

14 January 2019

Onyx Point, LLC. is delighted to announce that the final release for SIMP 6.3.0-0 is now available. Community Edition ISOs have been uploaded to our download servers. Enterprise customers can obtain the Enterprise Edition ISOs using the instructions here.

programming, open-source, simp, enterprise

judy johnson

25 December 2018

During this season of cheer
We hope to have something to share
If you are on call
Or just bored of it all
Try singing the verses we’ve here!

simp, puppet, git, security, devops, love where you work, holidays

Dylan Cochran

09 November 2018

In this month’s dev diary, we have SIMP 6.3 beta news, updates on the SIMP Console, the SIMP free trials, and two new testing programs!

simp, devops, puppet, onyxpoint

Brandon Riden

10 October 2018

Onyx Point, LLC. is delighted to announce that the final release for SIMP 6.2.0-0 is now available. Community Edition ISOs have been uploaded to the download servers and Enterprise Edition ISOs are available via the customer support portal for current Enterprise customers.

programming, open-source, simp, enterprise

Dylan Cochran

21 August 2018

Introducing SIMP Console

Current versions of SIMP Community Edition (CE) and SIMP Enterprise Edition (EE) ship with a full ELG stack that includes Elasticsearch, Logstash, and Grafana to provide a web dashboard to view the status of your environment. While this provided insights into what systems are doing, there were limitations. Elasticsearch and Logstash can require a lot of administration overhead in larger environments. Grafana is built to show graphs that change over time. While excellent for showing high level views of data over time, Grafana has issues with going into details when reporting large amounts of information on individual systems. Grafana has also prevented any reasonable way of command and control for users that wanted to be able to take actions on the data reported.

For new versions of SIMP Enterprise Edition, we are adding the SIMP Console, the new graphical user interface that integrates feature requests for SIMP that we received from our existing web dashboard users as well as new features our engineers have been excited to include.

With SIMP Console, the framework is more open to users and allows more command/control options while still being as flexible and extensible as possible. SimpEE customers will be able to customize the information users can see and what sources are being polled. The SIMP Console is designed for customers to integrate into their existing IT infrastructure and internal policies as much as possible

New details will be added to our website in the coming weeks. Follow us for information about our Beta availability (for existing SimpEE customers) and blog posts about some of the SIMP Console’s new features

Introducing SimpLE

On the heels of SIMP Console, we’d also like to announce a new edition of SIMP, SIMP Lite Edition (LE), or as we’ve come to call it, SimpLE.

SIMP Lite Edition combines SIMP Console with SIMP Compliance Engine. SimpLE will give users the opportunity to use SIMP Console to view and configure their fully customized install of SimpLE into their established environment without having to purchase the entire Enterprise Edition suite. Organizations can create custom profile content or add additional pre-configured compliance profile content.

SIMP Lite Edition offers a balance of features between the Open Source SIMP Community Edition (CE) and the commercial Enterprise Edition. It is a licensed, commercial edition of SIMP designed for users that need to implement a variety of customized compliance standards into their existing environments and software stacks.

Onyx Point, LLC. has developed SIMP Lite Edition to enable you to incorporate SIMP into your existing infrastructure, your way

programming, open-source, simp, enterprise, simp console

Dylan Cochran

02 April 2018


simp, enterprise edition, compliance engine, compliance, puppet

Nick Markowski

12 January 2018

If you’ve ever had to work in an IT shop bound by regulations and policies, you know how much of a hassle it can be to integrate new infrastructure and application components, while maintaining a compliant posture.

simp, compliance engine, automation, security, inspec

Russ Holmes

04 January 2018

2018 has barely begun and we’ve already been hit with significant bad news about cyber vulnerabilities. Among others already disclosed during the new calendar year, both Intel and VMware have announced that major cyber flaws have been discovered in their products. And, of course, attempts to fix these issues are having negative impacts on some common anti-virus products.

This is certainly not unique to these tech giants since barely a week goes by without some significant cybersecurity flaw or breach being uncovered. It’s safe to say that these disturbing reports will not be coming to an end anytime soon.

Although it may sometimes feel like it, this doesn’t mean that we should all throw our hands up about how hopeless the cybersecurity situation has become. We can only play the hands we’ve been dealt, and that requires continued efforts at locking down our systems with the many powerful tools we have at our disposal.

Cyber Hygiene Best Practices

Whichever tools you determine are appropriate for your security needs, none will be effective unless one first follows sound cyber hygiene practices. Among the most important of these is ensuring your underlying system adheres to the latest security best practices and is, at the very least, compliant with industry standards and government cybersecurity regulations. Breaches that are advanced by either willful or negligent disregard for these universally acknowledged best practices can be hard to explain – or forgive.

While best practice “table stakes” can be overwhelmingly voluminous and complex to implement and maintain, one does not have to go it alone. In many cases, it’s now possible to transition an existing DevOps platform to a best practices DevSecOps approach, then maintain systems compliance via automated self-healing Continuous Diagnostics and Mitigation (CDM) routines.

Open Source Help

A powerful Open Source offering now available to help address this is known as SIMP (Systems Integrity Management Platform). SIMP was originally developed within the US Intelligence Community to enhance their own ATO (Authority to Operate, federal-speak for C&A) and compliance efforts and is now available for anyone to leverage via GitHub. It only seems fair that we can take advantage of SIMP since it was our tax dollars that funded its development!

Currently riding on the open source DevOps automation technology known as Puppet, SIMP continually scans an environment (in either a development and/or production phase) and provides current system status against a range of cybersecurity benchmarks. Among these are NIST 800-53, NIST 800-171, FIPS 140-2, HIPAA, SOX, PCI-DSS, DISA STIG and others. SIMP can operate within either an on-prem and/or cloud environment and, should a vulnerability be found, can automatically apply remediation actions to immediately correct the flaw, or simply report this information back for further study and action.

With SIMP’s ability to enhance the C&A process, as well as help ensure systems remain compliant once deployed, an organization’s human IT assets can confidently turn their focus to other urgent cyber issues that require attention.

For more information on this Open Source tool, visit the SIMP project website at, or download it at

simp, compliance, automation, security

Dylan Cochran

05 December 2017

We're excited to announce the general availability of SIMP Fundamentals training! The three-day course covers the principles and practical knowledge to assist you in customizing and maintaining the SIMP framework. Our first offering is scheduled to begin February 27th, 2018

Register now, only 15 slots available!

simp, puppet

Lisa Umberger

13 June 2017

For the past year I have traveled all over the country to different technology events and conferences.  This past weekend I found myself in Charlotte, NC at the Southeast LinuxFest or SELF.  This is what I would call a grassroots event made up of a variety of technical people from all industries and all walks of life.  And you know what?!  I love this event!  I met a retired military man in his 60’s that pen tests with the best of them.  I met someone else who builds cars for a living who spends his free time on his passion; linux.  The event staff are friendly, accommodating, and very appreciative of support.


Lisa Umberger

01 June 2017

SIMP (System Integrity Management Platform), powered by Puppet, is designed to establish and operate consistent state infrastructures.  Too often, I hear organizations debate over whether to use Puppet or Ansible.  This debate may be fueled by a team’s desires to reduce cost, the comfort and knowledge of staff, and a move to consolidate tooling in a given stack. My position is, why not both?  

simp, ansible, puppet

Amanda Arnold

28 April 2017

SIMP 6.0.0 is available for download. In this unified release, you can simply run SIMP 6.0, whether you have Red Hat 6 or 7. This release fully supports Puppet 4 and integrates better with Puppet Enterprise. Please see the Changelog for the relevant release information.

simp, puppet

Amanda Arnold

23 February 2017

New and existing Government customers can now purchase both SIMP+SUPPORT and professional consulting services through GSA Advantage. This is a convenient and discounted purchasing option for our US Government customers, at 4% off of our commercial rates.

gsa, simp, puppet

Amanda Arnold

12 December 2016

On November 28th, Onyx Point’s offer to the U.S. General Services Administration was accepted for final award under GSA IT Schedule 70 (GENERAL PURPOSE COMMERCIAL INFORMATION TECHNOLOGY EQUIPMENT, SOFTWARE, AND SERVICES). This contract, GS-35F-086GA, is a five-year agreement between Onyx Point, LLC. and the GSA to offer goods and services to government customers at a discounted rate from published commercial pricing. Our company President, Jay Stoner, notes “The award of our GSA contract marks a significant milestone for Onyx Point, as it allows us to better serve existing and future customers by  offering our goods and services to the broader government community at a discounted rate. This award is the culmination of months of hard work by our employees and we are grateful for their efforts. We’re excited by this opportunity and look forward to working with the GSA. ”

consulting, gsa, simp, puppet, software, support

Lisa Umberger

06 December 2016

As an IT security professional, one of the biggest challenges I face is determining whether the system I am responsible for meets the applicable compliance requirements. I’m not talking about meeting them to pass a compliance audit, but actually meeting them on a continual basis, under all circumstances. When my System Admins need to troubleshoot, I want the system to be compliant. When an upgrade is made, I want the system to be compliant. I want the system to remain compliant and ensure that a means is in place to easily demonstrate that compliance to me.

compliance, simp, puppet

Amanda Arnold

05 December 2016

SIMP and its product steward, Onyx Point, LLC., were sponsors of Puppet Conf 2016. This year’s premier IT Automation conference was held in San Diego, California and highlighted product releases and improvements, technical break-outs, and security tracks to unite DevOps professionals over common interests and challenges.

puppetconf, simp, puppet

Amanda Arnold

02 December 2016

The release of SIMP 6.0.0 Alpha is now available for community test and feedback. This release uses Puppet 4, which is distributed as a single RPM by the Puppet all-in-one (AIO) installer. Starting with 6.0.0, the SIMP version numbering scheme will follow Semantic Versioning 2.0.0. SIMP 6.0.0 will support all operating systems under that numbering scheme moving forward.

Here are some items of note about this release:

puppet, simp

Trevor Vaughan

24 October 2016


programming, puppet, ruby, simp

Trevor Vaughan

05 June 2016

This is the latest update of the SIMP Project.

compliance, puppet, simp, weekly

Trevor Vaughan

07 May 2016

This is the latest update of the SIMP Project.

puppet, simp, technical

Trevor Vaughan

17 April 2016

This is the latest update of the SIMP Project.

simp, puppet, technical

Trevor Vaughan

10 April 2016

This is the latest update of the SIMP Project.

simp, puppet, technical

Trevor Vaughan

04 April 2016

This is the latest update of the SIMP Project.

simp, puppet, technical

Trevor Vaughan

29 March 2016

This is the latest update of the SIMP Project.

simp, puppet, technical

Trevor Vaughan

21 March 2016

This is the latest update of the SIMP Project.

puppet, simp, technical

Trevor Vaughan

12 March 2016

This is the first in what we hope to continue as a brief weekly update on the progress of the SIMP Project.

puppet, simp, technical

Ryan Russell-Yates

03 March 2016

I’ve been tossing around the idea of improving the User Experience of SIMP. Part of that process has been trying to decide what that actually means. I believe good UX is really about trust. We start to trust ideas based on conversation about them. I believe the best user experience would come from a conversational system.

simp, ux, puppet

Ryan Russell-Yates

14 January 2016

Configuration Management and Server Management have always gone hand-in-hand for me. In the beginning of my career, I was fortunate to learn Puppet and Linux at the same time which engaged me with both development and operational disciplines. This was my introduction to DevOps.

puppet, simp

Amanda Arnold

05 October 2015

We are looking forward to PuppetConf 2015 this week. Add _SIMP- A Flexible Compliance Automation Framework _to your agenda! ‘trevor_vaughan’, Onyx Point Vice President, will be covering the basics and answering any questions you have about this open source compliance automation initiative. You can catch him on October 9th at 2:30pm in room B-113. For additional information, please view the full conference schedule.

puppet, simp

Amanda Arnold

17 September 2015

SIMP LogoOnyx Point Vice-President and co-founder, ‘trevor_vaughan’, will present The Systems Integrity Management Platform (SIMP) to the IT automation community at this year’s PuppetConf.

conference, open_source, puppet, simp

We work with these Technologies + Partners