Product:
BigFix Compliance
Title:
New DISA STIG Checklist for MongoDB Enterprise Advanced 8.x on Linux
Security Benchmark:
U_MDB_Enterprise_Advanced_8-x_V1R1_STIG
Published Sites:
DISA STIG Checklist for MongoDB Enterprise Advanced 8.x on Linux, site version 3
(The site version is provided for air-gap customers)
Details:
· Total fixlets in Site: 33
· This checklist supports multi-instance, replica-set, and sharded clusters. It dynamically identifies all instances and writes results and logs to their respective folders.
· It uses secure parameters for credentials and supports RHEL versions 7, 8, and 9 and Ubuntu 20, 22, 24.
· Benchmark validates compliance against configuration-based MongoDB deployments.
· Both analysis and remediation checks are included.
· The Applicability Fixlet includes additional validation, ensuring that the Environment Setup Task log file exists, is not older than 90 days, and that results of files are present. This ensures Fixlets are reported as Not Applicable, and that the Measured Value (MV) correctly indicates that the Environment Setup Task has not been executed.
· Some of the checks allow you to use the parameterized setting to enable customization for compliance evaluation. Note that parameterization requires the creation of a custom site.
Actions to take:
● To subscribe to the above site, you can use the License Overview Dashboard to enable and gather the site. Note that you must be entitled to the BigFix Compliance product, and you must be using BigFix version 10 and later.
More information:
To know more about the BigFix Compliance SCM checklists, please see the following resources:
● BigFix Forum:
https://forum.bigfix.com/c/release-announcements/compliance
● BigFix Compliance SCM Checklists:
https://bigfix-wiki.hcltechsw.com/wikis/home?lang=en-us#!/wiki/BigFix%20Wiki/page/SCM%20Checklists
We hope you find this latest release of SCM content useful and effective. Thank you!
– The BigFix Compliance team