STIGQter STIGQter: STIG Summary: MongoDB Enterprise Advanced 3.x Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jul 2020:

MongoDB must be configured in accordance with the security configuration settings based on DoD security configuration and implementation guidance, including STIGs, NSA configuration guides, CTOs, DTMs, and IAVMs.

DISA Rule

SV-96643r1_rule

Vulnerability Number

V-81929

Group Title

SRG-APP-000516-DB-000363

Rule Version

MD3X-00-001100

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure MongoDB in accordance with security configuration settings by reviewing the Operation System and MongoDB documentation and applying the necessary configuration parameters to meet the configurations required by the STIG, NSA configuration guidelines, CTOs, DTMs, and IAVMs.

Check Contents

Review the MongoDB documentation and configuration to determine it is configured in accordance with DoD security configuration and implementation guidance, including STIGs, NSA configuration guides, CTOs, DTMs, and IAVMs.

If the MongoDB is not configured in accordance with security configuration settings, this is a finding.

Vulnerability Number

V-81929

Documentable

False

Rule Version

MD3X-00-001100

Severity Override Guidance

Review the MongoDB documentation and configuration to determine it is configured in accordance with DoD security configuration and implementation guidance, including STIGs, NSA configuration guides, CTOs, DTMs, and IAVMs.

If the MongoDB is not configured in accordance with security configuration settings, this is a finding.

Check Content Reference

M

Target Key

3265

Comments