Documentation - V-279398

V-279398

MongoDB Enterprise Advanced 8.x Security Technical Implementation Guide

CAT II

Title

MongoDB must prevent the installation of organization-defined software and firmware components without verification that the component has been digitally signed using a certificate recognized and approved by the organization.

Description

<VulnDiscussion>Software and firmware components prevented from installation unless signed with recognized and approved certificates include software and firmware version updates, patches, service packs, device drivers, and basic input/output system updates. Organizations can identify applicable software and firmware components by type, by specific items, or a combination of both. Digital signatures and organizational verification of such signatures is a method of code authentication.</VulnDiscu...

Fix Text (Documentation Requirement)

Ensure the MongoDB repository is configured according to the official documentation. Install any missing or outdated components by running the command: $ sudo yum update --repo mongodb-enterprise-8.0 Restart the MongoDB service: $ sudo systemctl restart mongod The YUM method is the preferred method because it provides automatic dependency management, built-in rollback support, and simplified security updates. These features reduce the risk of misconfiguration and ensure a more stable and secure environment that is easier to maintain and keep compliant. For additional details, refer to the MongoDB documentation: https://www.mongodb.com/docs/v8.0/tutorial/install-mongodb-enterprise-on-red-hat/

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel