updated SV-252139

mitre · Feb 8, 2024 · 84c1e20 · 84c1e20
1 parent ea68b6c
commit 84c1e20
Show file tree

Hide file tree

Showing 2 changed files with 9 additions and 8 deletions.
diff --git a/spec/mongo-inspec-profile/controls/SV-252134.rb b/spec/mongo-inspec-profile/controls/SV-252134.rb
@@ -77,12 +77,4 @@
   tag cci: ['CCI-000130', 'CCI-000131', 'CCI-000132', 'CCI-000133', 'CCI-000134', 'CCI-000135', 'CCI-000140', 'CCI-000166', 'CCI-000171', 'CCI-000172', 'CCI-001464', 'CCI-001487', 'CCI-001814', 'CCI-001844', 'CCI-001851', 'CCI-001858']
   tag nist: ['AU-3 a', 'AU-3 b', 'AU-3 c', 'AU-3 d', 'AU-3 e', 'AU-3 (1)', 'AU-5 b', 'AU-10', 'AU-12 b', 'AU-12 c', 'AU-14 (1)', 'AU-3 f', 'CM-5 (1)', 'AU-3 (2)', 'AU-4 (1)', 'AU-5 (2)']
 
-    describe yaml('/etc/mongod.conf.orig') do
-        its(['net','tls','mode']){should eq "requireTLS"}
-        its(['net','tls','certificateKeyFile']){should eq "/etc/ssl/mongodb.pem"}
-        its(['net','tls','CAFile']){should eq "/etc/ssl/caToValidateClientCertificates.pem"}
-        its(['net','tls','allowInvalidCertificates']){should eq false}
-        its(['net','tls','allowConnectionsWithoutCertificates']){should eq false}
-    end
-
 end
diff --git a/spec/mongo-inspec-profile/controls/SV-252139.rb b/spec/mongo-inspec-profile/controls/SV-252139.rb
@@ -55,4 +55,13 @@
   tag 'documentable'
   tag cci: ['CCI-000197', 'CCI-000185']
   tag nist: ['IA-5 (1) (c)', 'IA-5 (2) (b) (1)']
+
+  describe yaml('/etc/mongod.conf.orig') do
+        its(['net','tls','mode']){should eq "requireTLS"}
+        its(['net','tls','certificateKeyFile']){should eq "/etc/ssl/mongodb.pem"}
+        its(['net','tls','CAFile']){should eq "/etc/ssl/caToValidateClientCertificates.pem"}
+        its(['net','tls','allowInvalidCertificates']){should eq false}
+        its(['net','tls','allowConnectionsWithoutCertificates']){should eq false}
+    end
+
 end