Merge pull request #11870 from yuumasato/OCPBUGS-32551-use-oauth_or_o…

…authclient_inactivity_timeout

OCPBUGS-32551: swap token inactivity timeout rule

applications/openshift/authentication/oauth_inactivity_timeout/rule.yml

@@ -51,6 +51,7 @@ rationale: |-
 references:
   nerc-cip: CIP-004-6 R2.2.3,CIP-007-3 R5.1,CIP-007-3 R5.2,CIP-007-3 R5.3.1,CIP-007-3 R5.3.2,CIP-007-3 R5.3.3
   nist: AC-2(5),SC-10
+  srg: SRG-APP-000190-CTR-000500
 
 identifiers:
     cce@ocp4: CCE-83511-6

applications/openshift/authentication/oauthclient_inactivity_timeout/rule.yml

@@ -39,7 +39,6 @@ rationale: |-
 references:
   nerc-cip: CIP-004-6 R2.2.3,CIP-007-3 R5.1,CIP-007-3 R5.2,CIP-007-3 R5.3.1,CIP-007-3 R5.3.2,CIP-007-3 R5.3.3
   nist: AC-2(5),SC-10
-  srg: SRG-APP-000190-CTR-000500
 
 identifiers:
     cce@ocp4: CCE-84178-3

controls/srg_ctr/SRG-APP-000190-CTR-000500.yml

@@ -9,4 +9,4 @@ controls:
   status: automated
   rules:
   - sshd_disable_root_login
-  - oauthclient_inactivity_timeout
+  - oauth_or_oauthclient_inactivity_timeout

controls/stig_ocp4.yml

@@ -457,7 +457,7 @@ controls:
   - high
   title: OpenShift must disable root and terminate network connections.
   rules:
-  - oauthclient_inactivity_timeout
+  - oauth_or_oauthclient_inactivity_timeout
   - sshd_disable_root_login
   status: automated
 
@@ -526,7 +526,7 @@ controls:
     session at the end of the session, or as follows: for in-band management sessions
     (privileged sessions), the session must be terminated after 10 minutes of inactivity.'
   rules:
-  - oauthclient_inactivity_timeout
+  - oauth_or_oauthclient_inactivity_timeout
   - sshd_disable_root_login
   status: automated