From 5268c769f593b9272bc30d5da5ac9ea5f13dc48f Mon Sep 17 00:00:00 2001
From: rchikov <rumen.chikov@suse.com>
Date: Mon, 26 Aug 2024 14:10:40 +0200
Subject: [PATCH] Updated rules based on template service_disabled to support
 slem

---
 controls/stig_slmicro5.yml                             | 10 ++++++----
 .../services/base/service_kdump_disabled/rule.yml      |  1 +
 .../mounting/service_autofs_disabled/rule.yml          |  1 +
 shared/references/cce-slmicro5-avail.txt               |  1 -
 4 files changed, 8 insertions(+), 5 deletions(-)

diff --git a/controls/stig_slmicro5.yml b/controls/stig_slmicro5.yml
index b2b930dd10a..50427c29109 100644
--- a/controls/stig_slmicro5.yml
+++ b/controls/stig_slmicro5.yml
@@ -72,8 +72,9 @@ controls:
       levels:
           - medium
       title: SLEM 5 kernel core dumps must be disabled unless needed.
-      rules: []
-      status: pending
+      rules: 
+          - service_kdump_disabled
+      status: automated
     
     - id: SLEM-05-213020
       levels:
@@ -210,8 +211,9 @@ controls:
       levels:
           - medium
       title: SLEM 5 must disable the file system automounter unless required.
-      rules: []
-      status: pending
+      rules: 
+          - service_autofs_disabled
+      status: automated
     
     - id: SLEM-05-232010
       levels:
diff --git a/linux_os/guide/services/base/service_kdump_disabled/rule.yml b/linux_os/guide/services/base/service_kdump_disabled/rule.yml
index ce249cb7d2c..ae8cde88817 100644
--- a/linux_os/guide/services/base/service_kdump_disabled/rule.yml
+++ b/linux_os/guide/services/base/service_kdump_disabled/rule.yml
@@ -29,6 +29,7 @@ identifiers:
     cce@rhel10: CCE-88407-2
     cce@sle12: CCE-83105-7
     cce@sle15: CCE-85638-5
+    cce@slmicro5: CCE-93773-0
 
 references:
     cis-csc: 11,12,14,15,3,8,9
diff --git a/linux_os/guide/system/permissions/mounting/service_autofs_disabled/rule.yml b/linux_os/guide/system/permissions/mounting/service_autofs_disabled/rule.yml
index df5a67e58e3..3a047a6bdbe 100644
--- a/linux_os/guide/system/permissions/mounting/service_autofs_disabled/rule.yml
+++ b/linux_os/guide/system/permissions/mounting/service_autofs_disabled/rule.yml
@@ -30,6 +30,7 @@ identifiers:
     cce@rhel10: CCE-88947-7
     cce@sle12: CCE-83070-3
     cce@sle15: CCE-83278-2
+    cce@slmicro5: CCE-93772-2
 
 references:
     cis-csc: 1,12,15,16,5
diff --git a/shared/references/cce-slmicro5-avail.txt b/shared/references/cce-slmicro5-avail.txt
index 836e2a29b3a..28efb801199 100644
--- a/shared/references/cce-slmicro5-avail.txt
+++ b/shared/references/cce-slmicro5-avail.txt
@@ -65,7 +65,6 @@ CCE-93768-0
 CCE-93769-8
 CCE-93770-6
 CCE-93771-4
-CCE-93772-2
 CCE-93773-0
 CCE-93774-8
 CCE-93775-5