Detections
Analytics
CIS MongoDB 6 v1.2.0 L1 MongoDB
Audit Details
Name: CIS MongoDB 6 v1.2.0 L1 MongoDB
Updated: 11/27/2024
Authority: CIS
Plugin: Unix
Revision: 1.0
Estimated Item Count: 11
File Details
Filename: CIS_MongoDB_6_v1.2.0_L1_OS_Linux.audit
Size: 28 kB
MD5: e473e347d15e20e3a9c56e74c584062e
SHA256: 2576546542aeacc1ec6f4f1976543c756016451cc4bbcf789892a7d1fe3056af
Audit Items
| Description | Categories |
|---|---|
| 1.1 Ensure the appropriate MongoDB software version/patches are installed | CONFIGURATION MANAGEMENT |
| 2.1 Ensure Authentication is configured | IDENTIFICATION AND AUTHENTICATION |
| 2.2 Ensure that MongoDB does not bypass authentication via the localhost exception | IDENTIFICATION AND AUTHENTICATION |
| 3.3 Ensure that MongoDB is run using a non-privileged, dedicated service account | ACCESS CONTROL |
| 4.2 Ensure Weak Protocols are Disabled | SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.3 Ensure Encryption of Data in Transit TLS or SSL (Transport Encryption) | SYSTEM AND COMMUNICATIONS PROTECTION |
| 5.1 Ensure that system activity is audited | AUDIT AND ACCOUNTABILITY |
| 6.1 Ensure that MongoDB uses a non-default port | CONFIGURATION MANAGEMENT |
| 7.1 Ensure appropriate key file permissions are set | IDENTIFICATION AND AUTHENTICATION |
| 7.2 Ensure appropriate database file permissions are set. | ACCESS CONTROL |
| CIS_MongoDB_6_v1.2.0_L1_OS_Linux.audit from CIS MongoDB 6 Benchmark v1.2.0 |