STIGQter: STIG Summary: MongoDB Enterprise Advanced 3.x Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jul 2020: STIGQter: STIG Summary: MongoDB Enterprise Advanced 3.x Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jul 2020:SV-96621r1_rule
V-81907
SRG-APP-000359-DB-000319
MD3X-00-000630
CAT II
10
View the mongodb configuration file (default location: /etc/mongod.conf) and view the "auditlog.path" to identify the storage volume.
Install MongoDB Ops Manager or other organization approved monitoring software.
Configure the required alert in the monitoring software to send an alert where storage volume holding the auditLog file utilization reaches 75%.
A MongoDB audit log that is configured to be stored in a file is identified in the MongoDB configuration file (default: /etc/mongod.conf) under the "auditLog:" key and subkey "destination:" where "destination" is "file".
If this is the case then the "AuditLog:" subkey "path:" determines where (device/directory) that file will be located.
View the mongodb configuration file (default location: /etc/mongod.conf) and identify how the "auditlog.destination" is configured.
When the "auditlog.destination" is "file", this is a finding.
V-81907
False
MD3X-00-000630
A MongoDB audit log that is configured to be stored in a file is identified in the MongoDB configuration file (default: /etc/mongod.conf) under the "auditLog:" key and subkey "destination:" where "destination" is "file".
If this is the case then the "AuditLog:" subkey "path:" determines where (device/directory) that file will be located.
View the mongodb configuration file (default location: /etc/mongod.conf) and identify how the "auditlog.destination" is configured.
When the "auditlog.destination" is "file", this is a finding.
M
3265