Detections
Analytics

TNS MongoDB 2.6 Best Practices Linux OS Audit v1.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: TNS MongoDB 2.6 Best Practices Linux OS Audit v1.0

Updated: 1/13/2020

Authority: TNS

Plugin: Unix

Revision: 1.12

Estimated Item Count: 24

Audit Items

DescriptionCategories
Audit System Activity - 'systemLog.verbosity'

AUDIT AND ACCOUNTABILITY

Audit System Activity - config - 'logUserIds = 1'

AUDIT AND ACCOUNTABILITY

Audit System Activity - config - 'systemLog.logAppend = true'

AUDIT AND ACCOUNTABILITY

Configure Role-Based Access Control - 'security.authorization = enabled'

ACCESS CONTROL

Encrypt Communication - 'net.ssl.allowInvalidCertificates != true'

SYSTEM AND COMMUNICATIONS PROTECTION

Encrypt Communication - config - 'net.ssl.CRLFile'

SYSTEM AND COMMUNICATIONS PROTECTION

Encrypt Communication - config - 'net.ssl.FIPSMode = true'

SYSTEM AND COMMUNICATIONS PROTECTION

Encrypt Communication - config - 'net.ssl.mode = requireSSL'

SYSTEM AND COMMUNICATIONS PROTECTION

Encrypt Communication - config - 'net.ssl.weakCertificateValidation = false' - auth enabled

SYSTEM AND COMMUNICATIONS PROTECTION

Encrypt Communication - config - 'net.ssl.weakCertificateValidation = false' - auth not enabled

SYSTEM AND COMMUNICATIONS PROTECTION

Encrypt Communication - config - 'security.clusterAuthMode = keyFile'

SYSTEM AND COMMUNICATIONS PROTECTION

Limit Network Exposure - 'net.http.JSONPEnabled != true'

CONFIGURATION MANAGEMENT

Limit Network Exposure - 'net.http.RESTInterfaceEnabled != true'

CONFIGURATION MANAGEMENT

Limit Network Exposure - 'net.ipv6 != true'

CONFIGURATION MANAGEMENT

Require Authentication - config - 'authenticationMechanisms - MONGODB-CR'

IDENTIFICATION AND AUTHENTICATION

Require Authentication - config - 'enableTestCommands = 0'

CONFIGURATION MANAGEMENT

Run MongoDB with a Dedicated User - 'MONGO_GROUP'

ACCESS CONTROL

Run MongoDB with a Dedicated User - 'MONGO_USER'

ACCESS CONTROL

Run MongoDB with Secure Configuration Options - config - 'bindIp != 0.0.0.0'

CONFIGURATION MANAGEMENT

Run MongoDB with Secure Configuration Options - config - 'enableLocalhostAuthBypass = 0'

CONFIGURATION MANAGEMENT

Run MongoDB with Secure Configuration Options - config - 'maxIncomingConnections has been configured'

ACCESS CONTROL

Run MongoDB with Secure Configuration Options - config - 'port != 27017'

CONFIGURATION MANAGEMENT

Run MongoDB with Secure Configuration Options - config - 'systemLog.quiet = false'

AUDIT AND ACCOUNTABILITY

TNS_MongoDB_2_6_Best_Practices_v1.0-OS-Linux.audit