From 172f8632d201380af3c8d4c65883cdb204244e35 Mon Sep 17 00:00:00 2001
From: Matthew Burket <mburket@redhat.com>
Date: Fri, 20 Aug 2021 13:21:16 -0500
Subject: [PATCH] Update existing rules for RHEL-07-010492 and RHEL-07-010482
---
.../bootloader-grub2/non-uefi/grub2_admin_username/rule.yml | 2 +-
.../bootloader-grub2/uefi/grub2_uefi_admin_username/rule.yml | 2 +-
products/rhel7/profiles/stig.profile | 2 ++
3 files changed, 4 insertions(+), 2 deletions(-)
diff --git a/linux_os/guide/system/bootloader-grub2/non-uefi/grub2_admin_username/rule.yml b/linux_os/guide/system/bootloader-grub2/non-uefi/grub2_admin_username/rule.yml
index bb2f1bae21c..915d8f546df 100644
--- a/linux_os/guide/system/bootloader-grub2/non-uefi/grub2_admin_username/rule.yml
+++ b/linux_os/guide/system/bootloader-grub2/non-uefi/grub2_admin_username/rule.yml
@@ -48,7 +48,7 @@ references:
ospp: FIA_UAU.1
srg: SRG-OS-000080-GPOS-00048
stigid@ol7: OL07-00-010480
- stigid@rhel7: RHEL-07-010480
+ stigid@rhel7: RHEL-07-010483
stigid@rhel8: RHEL-08-010149
ocil_clause: 'it does not'
diff --git a/linux_os/guide/system/bootloader-grub2/uefi/grub2_uefi_admin_username/rule.yml b/linux_os/guide/system/bootloader-grub2/uefi/grub2_uefi_admin_username/rule.yml
index 128d7cc1cb8..d81727fa7b9 100644
--- a/linux_os/guide/system/bootloader-grub2/uefi/grub2_uefi_admin_username/rule.yml
+++ b/linux_os/guide/system/bootloader-grub2/uefi/grub2_uefi_admin_username/rule.yml
@@ -55,7 +55,7 @@ references:
ospp: FIA_UAU.1
srg: SRG-OS-000080-GPOS-00048
stigid@ol7: OL07-00-010490
- stigid@rhel7: RHEL-07-010490
+ stigid@rhel7: RHEL-07-010492
stigid@rhel8: RHEL-08-010141
ocil_clause: 'it does not'
diff --git a/products/rhel7/profiles/stig.profile b/products/rhel7/profiles/stig.profile
index 67e22982cd1..f073da46836 100644
--- a/products/rhel7/profiles/stig.profile
+++ b/products/rhel7/profiles/stig.profile
@@ -113,8 +113,10 @@ selections:
- gnome_gdm_disable_guest_login
- sshd_do_not_permit_user_env
- disable_host_auth
+ - grub2_admin_username
- grub2_password
- require_singleuser_auth
+ - grub2_uefi_admin_username
- grub2_uefi_password
- smartcard_auth
- package_rsh-server_removed