---

{{ if .Vars.ubtu24cis_level_2 }}
  {{ if .Vars.ubtu24cis_rule_6_2_4_6 }}
command:
  audit_conf_owner:
    title: 6.2.4.6 | Ensure audit configuration files owner is configured
    exec: for file  in `find /etc/audit/ -type f \( -name '*.conf' -o -name '*.rules' \)`; do stat -Lc " %n_%U" $file; done
    exit-status: 0
    stdout:
    - '/.*_root$/'
    meta:
      server: 2
      workstation: 2
      CIS_ID:
      - 6.2.4.6
      CISv8:
      - 3.3
      CISv8_IG1: true
      CISv8_IG2: true
      CISv8_IG3: true
      NIST800-53R5:
      - AU-3
  {{ end }}
{{ end }}