[Ubuntu 22.04] Add missing stigid@ubuntu2204 references: Password Policy (UBTU-22-611000 to 632099)

linux_os/guide/services/ssh/ssh_server/sshd_enable_pubkey_auth/rule.yml

@@ -29,6 +29,7 @@ identifiers:
 
 references:
     srg: SRG-OS-000105-GPOS-00052,SRG-OS-000106-GPOS-00053,SRG-OS-000107-GPOS-00054,SRG-OS-000108-GPOS-00055
+    stigid@ubuntu2204: UBTU-22-612020
 
 {{{ complete_ocil_entry_sshd_option(default="no", option="PubkeyAuthentication", value="yes") }}}
 

linux_os/guide/services/sssd/sssd_offline_cred_expiration/rule.yml

@@ -47,6 +47,7 @@ references:
     stigid@ol8: OL08-00-020290
     stigid@sle12: SLES-12-010680
     stigid@sle15: SLES-15-010500
+    stigid@ubuntu2204: UBTU-22-631015
 
 ocil_clause: 'it does not exist or is not configured properly'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_dcredit/rule.yml

@@ -44,6 +44,7 @@ references:
     srg: SRG-OS-000071-GPOS-00039
     stigid@ol7: OL07-00-010140
     stigid@ol8: OL08-00-020130
+    stigid@ubuntu2204: UBTU-22-611020
 
 ocil_clause: 'the value of "dcredit" is a positive number or is commented out'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_dictcheck/rule.yml

@@ -29,6 +29,7 @@ references:
     nist: IA-5(c),IA-5(1)(a),CM-6(a),IA-5(4)
     srg: SRG-OS-000480-GPOS-00225,SRG-OS-000072-GPOS-00040
     stigid@ol8: OL08-00-020300
+    stigid@ubuntu2204: UBTU-22-611030
 
 ocil_clause: '"dictcheck" does not have a value other than "0", or is commented out'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_difok/rule.yml

@@ -45,6 +45,7 @@ references:
     srg: SRG-OS-000072-GPOS-00040
     stigid@ol7: OL07-00-010160
     stigid@ol8: OL08-00-020170
+    stigid@ubuntu2204: UBTU-22-611040
 
 ocil_clause: 'the value of "difok" is set to less than "{{{ xccdf_value("var_password_pam_difok") }}}", or is commented out'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_enforcing/rule.yml

@@ -29,6 +29,7 @@ severity: medium
 
 references:
     srg: SRG-OS-000480-GPOS-00225
+    stigid@ubuntu2204: UBTU-22-611045
 
 ocil_clause: 'enforcing is not uncommented or configured correctly'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_lcredit/rule.yml

@@ -44,6 +44,7 @@ references:
     srg: SRG-OS-000070-GPOS-00038
     stigid@ol7: OL07-00-010130
     stigid@ol8: OL08-00-020120
+    stigid@ubuntu2204: UBTU-22-611015
 
 ocil_clause: 'the value of "lcredit" is a positive number or is commented out'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_minlen/rule.yml

@@ -44,6 +44,7 @@ references:
     srg: SRG-OS-000078-GPOS-00046
     stigid@ol7: OL07-00-010280
     stigid@ol8: OL08-00-020230
+    stigid@ubuntu2204: UBTU-22-611035
 
 ocil_clause: 'the command does not return a "minlen" value of "{{{ xccdf_value("var_password_pam_minlen") }}}" or greater, does not return a line, or the line is commented out'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_ocredit/rule.yml

@@ -45,6 +45,7 @@ references:
     srg: SRG-OS-000266-GPOS-00101
     stigid@ol7: OL07-00-010150
     stigid@ol8: OL08-00-020280
+    stigid@ubuntu2204: UBTU-22-611025
 
 ocil_clause: 'value of "ocredit" is a positive number or is commented out'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_retry/rule.yml

@@ -44,6 +44,7 @@ references:
     srg: SRG-OS-000069-GPOS-00037,SRG-OS-000480-GPOS-00227
     stigid@ol7: OL07-00-010119
     stigid@ol8: OL08-00-020102,OL08-00-020103,OL08-00-020104
+    stigid@ubuntu2204: UBTU-22-611045
 
 ocil_clause: 'the value of "retry" is set to "0" or greater than "{{{ xccdf_value("var_password_pam_retry") }}}", or is missing'
 

linux_os/guide/system/accounts/accounts-pam/password_quality/password_quality_pwquality/accounts_password_pam_ucredit/rule.yml

@@ -41,6 +41,7 @@ references:
     srg: SRG-OS-000069-GPOS-00037,SRG-OS-000070-GPOS-00038
     stigid@ol7: OL07-00-010120
     stigid@ol8: OL08-00-020110
+    stigid@ubuntu2204: UBTU-22-611010
 
 ocil_clause: 'the value of "ucredit" is a positive number or is commented out'
 

linux_os/guide/system/accounts/accounts-pam/set_password_hashing_algorithm/set_password_hashing_algorithm_auth_stig/rule.yml

@@ -28,3 +28,6 @@ rationale: |-
 severity: medium
 
 platform: package[pam]
+references:
+    stigid@ubuntu2204: UBTU-22-611055
+

linux_os/guide/system/accounts/accounts-pam/set_password_hashing_algorithm/set_password_hashing_algorithm_logindefs/rule.yml

@@ -44,6 +44,7 @@ references:
     stigid@ol8: OL08-00-010110
     stigid@sle12: SLES-12-010210
     stigid@sle15: SLES-15-010260
+    stigid@ubuntu2204: UBTU-22-611070
 
 ocil_clause: 'ENCRYPT_METHOD is not set to {{{ xccdf_value("var_password_hashing_algorithm") }}}'
 

linux_os/guide/system/accounts/accounts-physical/screen_locking/smart_card_login/install_smartcard_packages/rule.yml

@@ -56,6 +56,7 @@ references:
     stigid@ol8: OL08-00-010390
     stigid@sle12: SLES-12-030500
     stigid@sle15: SLES-15-010460
+    stigid@ubuntu2204: UBTU-22-612010
 
 ocil_clause: 'smartcard software is not installed'
 

linux_os/guide/system/accounts/accounts-physical/screen_locking/smart_card_login/package_opensc_installed/rule.yml

@@ -32,6 +32,7 @@ references:
     nist: CM-6(a)
     srg: SRG-OS-000375-GPOS-00160,SRG-OS-000376-GPOS-00161
     stigid@ol8: OL08-00-010410
+    stigid@ubuntu2204: UBTU-22-612015
 
 ocil_clause: 'the package is not installed'
 

linux_os/guide/system/accounts/accounts-physical/screen_locking/smart_card_login/smartcard_configure_ca/rule.yml

@@ -33,6 +33,7 @@ references:
     srg: SRG-OS-000066-GPOS-00034,SRG-OS-000384-GPOS-00167
     stigid@sle12: SLES-12-030530
     stigid@sle15: SLES-15-010170
+    stigid@ubuntu2204: UBTU-22-612030
 
 ocil_clause: 'ca is not configured'
 

linux_os/guide/system/accounts/accounts-physical/screen_locking/smart_card_login/smartcard_configure_cert_checking/rule.yml

@@ -37,6 +37,7 @@ references:
     stigid@ol7: OL07-00-041003
     stigid@sle12: SLES-12-030510
     stigid@sle15: SLES-15-010470
+    stigid@ubuntu2204: UBTU-22-612025
 
 ocil_clause: 'ocsp_on is not configured'
 

linux_os/guide/system/accounts/accounts-physical/screen_locking/smart_card_login/smartcard_configure_crl/rule.yml

@@ -20,6 +20,7 @@ severity: medium
 
 references:
     srg: SRG-OS-000384-GPOS-00167
+    stigid@ubuntu2204: UBTU-22-612035
 
 ocil_clause: 'crl_auto or crl_offline is not configured'
 

linux_os/guide/system/accounts/accounts-physical/screen_locking/smart_card_login/smartcard_pam_enabled/rule.yml

@@ -62,6 +62,7 @@ references:
     srg: SRG-OS-000068-GPOS-00036,SRG-OS-000105-GPOS-00052,SRG-OS-000106-GPOS-00053,SRG-OS-000107-GPOS-00054,SRG-OS-000108-GPOS-00055,SRG-OS-000375-GPOS-00160,SRG-OS-000375-GPOS-00161,SRG-OS-000375-GPOS-00162
     stigid@sle12: SLES-12-030520
     stigid@sle15: SLES-15-020030
+    stigid@ubuntu2204: UBTU-22-612020
 
 ocil_clause: 'non-exempt accounts are not using CAC authentication'
 

linux_os/guide/system/accounts/accounts-physical/screen_locking/smart_card_login/verify_use_mappers/rule.yml

@@ -23,6 +23,7 @@ severity: low
 
 references:
     srg: SRG-OS-000068-GPOS-00036
+    stigid@ubuntu2204: UBTU-22-612040
 
 ocil_clause: 'use_mappers is not uncommented or configured correctly'
 

linux_os/guide/system/accounts/accounts-restrictions/password_storage/accounts_password_pam_unix_rounds_password_auth/rule.yml

@@ -42,6 +42,7 @@ identifiers:
 
 references:
     srg: SRG-OS-000073-GPOS-00041
+    stigid@ubuntu2204: UBTU-22-611055
 
 ocil_clause: 'rounds is not set to {{{ xccdf_value("var_password_pam_unix_rounds") }}} or is commented out'
 

linux_os/guide/system/accounts/accounts-restrictions/password_storage/no_empty_passwords/rule.yml

@@ -55,6 +55,7 @@ references:
     stigid@ol8: OL08-00-020331,OL08-00-020332
     stigid@sle12: SLES-12-010231
     stigid@sle15: SLES-15-020300
+    stigid@ubuntu2204: UBTU-22-611060
 
 ocil_clause: 'NULL passwords can be used'
 

linux_os/guide/system/accounts/accounts-restrictions/password_storage/no_empty_passwords_etc_shadow/rule.yml

@@ -40,6 +40,7 @@ references:
     stigid@ol8: OL08-00-010121
     stigid@sle12: SLES-12-010221
     stigid@sle15: SLES-15-020181
+    stigid@ubuntu2204: UBTU-22-611065
 
 ocil_clause: 'Blank or NULL passwords can be used'
 

linux_os/guide/system/network/network_ssl/only_allow_dod_certs/rule.yml

@@ -23,3 +23,4 @@ severity: medium
 
 references:
     srg: SRG-OS-000403-GPOS-00182
+    stigid@ubuntu2204: UBTU-22-631010