From 339adbac054ebab7f78c21c236652cea058c4276 Mon Sep 17 00:00:00 2001
From: svet-se <svetlin.boychev@suse.com>
Date: Wed, 16 Oct 2024 12:06:28 +0300
Subject: [PATCH] Add rule chronyd_or_ntpd_set_maxpoll to sle micro 5 stig
 profile

---
 controls/stig_slmicro5.yml                                | 8 ++++++--
 .../ntp/chronyd_or_ntpd_set_maxpoll/bash/shared.sh        | 2 +-
 .../services/ntp/chronyd_or_ntpd_set_maxpoll/rule.yml     | 1 +
 .../services/ntp/chronyd_specify_remote_server/rule.yml   | 1 +
 shared/references/cce-slmicro5-avail.txt                  | 2 --
 5 files changed, 9 insertions(+), 5 deletions(-)

diff --git a/controls/stig_slmicro5.yml b/controls/stig_slmicro5.yml
index 13ca65b0385..ae440932ec8 100644
--- a/controls/stig_slmicro5.yml
+++ b/controls/stig_slmicro5.yml
@@ -442,8 +442,12 @@ controls:
       title:
           SLEM 5 clock must, for networked systems, be synchronized to an authoritative
           DOD time source at least every 24 hours.
-      rules: []
-      status: pending
+      rules:
+          - chronyd_or_ntpd_set_maxpoll
+          - chronyd_specify_remote_server
+          - var_multiple_time_servers=stig
+          - var_time_service_set_maxpoll=18_hours
+      status: automated
     
     - id: SLEM-05-252015
       levels:
diff --git a/linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/bash/shared.sh b/linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/bash/shared.sh
index 8a803512670..cba93ccbf8d 100644
--- a/linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/bash/shared.sh
+++ b/linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/bash/shared.sh
@@ -3,7 +3,7 @@
 {{{ bash_instantiate_variables("var_time_service_set_maxpoll") }}}
 
 
-{{% if 'sle' in product or 'ubuntu' in product %}}
+{{% if 'sle' in product or 'slmicro' in product or 'ubuntu' in product %}}
 pof="/bin/pidof"
 {{% else %}}
 pof="/usr/sbin/pidof"
diff --git a/linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/rule.yml b/linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/rule.yml
index cec6469cc8b..33ac6c19ac7 100644
--- a/linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/rule.yml
+++ b/linux_os/guide/services/ntp/chronyd_or_ntpd_set_maxpoll/rule.yml
@@ -78,6 +78,7 @@ identifiers:
     cce@rhel10: CCE-88549-1
     cce@sle12: CCE-83124-8
     cce@sle15: CCE-83287-3
+    cce@slmicro5: CCE-93709-4
 
 references:
     cis-csc: 1,14,15,16,3,5,6
diff --git a/linux_os/guide/services/ntp/chronyd_specify_remote_server/rule.yml b/linux_os/guide/services/ntp/chronyd_specify_remote_server/rule.yml
index 94aea66cc5f..516a57a68f3 100644
--- a/linux_os/guide/services/ntp/chronyd_specify_remote_server/rule.yml
+++ b/linux_os/guide/services/ntp/chronyd_specify_remote_server/rule.yml
@@ -26,6 +26,7 @@ identifiers:
     cce@rhel10: CCE-86811-7
     cce@sle12: CCE-91631-2
     cce@sle15: CCE-85833-2
+    cce@slmicro5: CCE-93803-5
 
 references:
     cis@sle12: 2.2.1.3
diff --git a/shared/references/cce-slmicro5-avail.txt b/shared/references/cce-slmicro5-avail.txt
index 3d434c633c8..bbd172b28b9 100644
--- a/shared/references/cce-slmicro5-avail.txt
+++ b/shared/references/cce-slmicro5-avail.txt
@@ -5,7 +5,6 @@ CCE-93668-2
 CCE-93669-0
 CCE-93670-8
 CCE-93677-3
-CCE-93709-4
 CCE-93713-6
 CCE-93711-0
 CCE-93712-8
@@ -14,7 +13,6 @@ CCE-93743-3
 CCE-93757-3
 CCE-93777-1
 CCE-93783-9
-CCE-93803-5
 CCE-93804-3
 CCE-93805-0
 CCE-93806-8