updated inspec

spec/ansible/roles/mongo-stig/tasks/cat2.yml

@@ -348,6 +348,7 @@
 #     - medium
 #     - SV-252172
 
+##### MANUAL
 # - name: "MEDIUM | SV-252173 | MongoDB must provide a warning to appropriate support staff when allocated audit record storage volume reaches 75 percent of maximum audit record storage capacity."
 #   command: true
 #   ignore_errors: true
@@ -380,6 +381,7 @@
 #     - medium
 #     - SV-252176
 
+##### MANUAL
 # - name: "MEDIUM | SV-252177 | MongoDB must prohibit the use of cached authenticators after an organization-defined time period."
 #   command: true
 #   ignore_errors: true
@@ -412,6 +414,7 @@
 #     - medium
 #     - SV-252180
 
+##### MANUAL
 # - name: "MEDIUM | SV-252181 | When invalid inputs are received, MongoDB must behave in a predictable and documented manner that reflects organizational and system objectives."
 #   command: true
 #   ignore_errors: true
@@ -428,6 +431,7 @@
 #     - medium
 #     - SV-252182
 
+##### MANUAL
 # - name: "MEDIUM | SV-252183 | Security-relevant software updates to MongoDB must be installed within the time period directed by an authoritative source (e.g., IAVM, CTOs, DTMs, and STIGs)."
 #   command: true  
 #   ignore_errors: true
@@ -436,6 +440,7 @@
 #     - medium
 #     - SV-252183
 
+##### MANUAL
 # - name: "MEDIUM | SV-252185 | MongoDB must be configured in accordance with the security configuration settings based on DoD security configuration and implementation guidance, including STIGs, NSA configuration guides, CTOs, DTMs, and IAVMs."
 #   command: true 
 #   ignore_errors: true

spec/mongo-inspec-profile/controls/SV-252173.rb

@@ -31,4 +31,11 @@
   tag 'documentable'
   tag cci: ['CCI-001855']
   tag nist: ['AU-5 (1)']
+
+  describe 'View the MongoDB configuration file and view the auditlog.path to identify the storage volume.' do
+    skip 'Configure the required alert in the monitoring software to send an alert where storage volume holding the auditLog file utilization reaches 75 percent.'
+    skip 'If appropriate support staff are not notified immediately upon storage volume utilization reaching 75%, this is a finding'
+    skip 'Verify that MongoDB Ops Manager or other organization approved monitoring software is installed.'
+  end
+
 end

spec/mongo-inspec-profile/controls/SV-252183.rb

@@ -31,4 +31,10 @@
   tag 'documentable'
   tag cci: ['CCI-002605']
   tag nist: ['SI-2 c']
+
+  describe 'Review the organizational or site-specific software update policy and verify that MongoDB has been updated consistent with the time frame specified by the policy.' do
+    skip 'Institute and adhere to the policies and procedures to ensure that MongoDB is updated consistent with the organizational or site-specific software update policy and time frame.'
+    skip 'Update MongoDB to the necessary major and minor release in accordance with the organizational or site-specific policy.'
+  end
+
 end

spec/mongo-inspec-profile/controls/SV-252185.rb

@@ -22,4 +22,10 @@
   tag 'documentable'
   tag cci: ['CCI-000366']
   tag nist: ['CM-6 b']
+
+  describe 'Assessing the system against the STIG configurations and guidance of the current document is the check for this requirement. ' do
+    skip 'Configure MongoDB in accordance with security configuration settings and guidance of this STIG document to meet the configurations required by the STIG, NSA configuration guidelines, CTOs, DTMs, and IAVMs.'
+    skip 'If the MongoDB is not configured in accordance with the security configuration settings of this document, this is a finding.'
+  end
+
 end