Merge pull request ComplianceAsCode#12499 from svet-se/slmicro5-stig-…

…add-rule-chronyd-or-ntpd-set-maxpoll

Add rule chronyd_or_ntpd_set_maxpoll to SLE Micro 5 STIG profile

controls/stig_slmicro5.yml

@@ -442,8 +442,12 @@ controls:
       title:
           SLEM 5 clock must, for networked systems, be synchronized to an authoritative
           DOD time source at least every 24 hours.
-      rules: []
-      status: pending
+      rules:
+          - chronyd_or_ntpd_set_maxpoll
+          - chronyd_specify_remote_server
+          - var_multiple_time_servers=stig
+          - var_time_service_set_maxpoll=18_hours
+      status: automated
 
     - id: SLEM-05-252015
       levels:

linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/bash/shared.sh

@@ -3,7 +3,7 @@
 {{{ bash_instantiate_variables("var_time_service_set_maxpoll") }}}
 
 
-{{% if 'sle' in product or 'ubuntu' in product %}}
+{{% if 'sle' in product or 'slmicro' in product or 'ubuntu' in product %}}
 pof="/bin/pidof"
 {{% else %}}
 pof="/usr/sbin/pidof"

linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/rule.yml

@@ -78,6 +78,7 @@ identifiers:
     cce@rhel10: CCE-88549-1
     cce@sle12: CCE-83124-8
     cce@sle15: CCE-83287-3
+    cce@slmicro5: CCE-93709-4
 
 references:
     cis-csc: 1,14,15,16,3,5,6

linux_os/guide/services/ntp/chronyd_specify_remote_server/rule.yml

@@ -26,6 +26,7 @@ identifiers:
     cce@rhel10: CCE-86811-7
     cce@sle12: CCE-91631-2
     cce@sle15: CCE-85833-2
+    cce@slmicro5: CCE-93803-5
 
 references:
     cis@sle12: 2.2.1.3

shared/references/cce-slmicro5-avail.txt

@@ -5,7 +5,6 @@ CCE-93668-2
 CCE-93669-0
 CCE-93670-8
 CCE-93677-3
-CCE-93709-4
 CCE-93713-6
 CCE-93711-0
 CCE-93712-8
@@ -14,7 +13,6 @@ CCE-93743-3
 CCE-93757-3
 CCE-93777-1
 CCE-93783-9
-CCE-93803-5
 CCE-93804-3
 CCE-93805-0
 CCE-93806-8