31 lines
692 B
YAML
31 lines
692 B
YAML
---
|
|
|
|
{{ if .Vars.ubtu24cis_level_1 }}
|
|
{{ if .Vars.ubtu24cis_rule_6_1_2_1_2 }}
|
|
{{ if not .Vars.ubtu24cis_is_syslog_server }}
|
|
file:
|
|
journal_remote_configured:
|
|
title: 6.1.2.1.2 | Ensure systemd-journal-upload authentication is configured
|
|
path: /etc/systemd/journal-upload.conf
|
|
exists: true
|
|
contents:
|
|
- '/^URL=/'
|
|
- '/ServerKeyFile=.*.pem/'
|
|
- '/ServerCertificateFile=.*.pem/'
|
|
- '/TrustedCertificateFile=.*.pem/'
|
|
meta:
|
|
server: 1
|
|
workstation: 1
|
|
CIS_ID:
|
|
- 6.1.2.1.2
|
|
CISv8: 8.2
|
|
CISv8_IG1: true
|
|
CISv8_IG2: true
|
|
CISv8_IG3: true
|
|
NIST800-53R5:
|
|
- AU-2
|
|
- AU-12
|
|
{{ end }}
|
|
{{ end }}
|
|
{{ end }}
|