From 47264e6b5c21196f1dd89e6d904ea54f33db2e15 Mon Sep 17 00:00:00 2001
From: Vojtech Polasek <vpolasek@redhat.com>
Date: Tue, 1 Oct 2024 09:48:05 +0200
Subject: [PATCH] RHEL 9 STIG: change var_networkmanager_dns_mode to "default"

---
 controls/stig_rhel9.yml                                         | 2 +-
 .../network/networkmanager/var_networkmanager_dns_mode.var      | 1 +
 tests/data/profile_stability/rhel9/stig.profile                 | 2 +-
 tests/data/profile_stability/rhel9/stig_gui.profile             | 2 +-
 4 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/controls/stig_rhel9.yml b/controls/stig_rhel9.yml
index a0b9cfcd846..b095fd99f6c 100644
--- a/controls/stig_rhel9.yml
+++ b/controls/stig_rhel9.yml
@@ -1512,7 +1512,7 @@ controls:
         title: RHEL 9 must configure a DNS processing mode set be Network Manager.
         rules:
             - networkmanager_dns_mode
-            - var_networkmanager_dns_mode=none
+            - var_networkmanager_dns_mode=explicit_default
         status: automated
 
     -   id: RHEL-09-252045
diff --git a/linux_os/guide/system/network/networkmanager/var_networkmanager_dns_mode.var b/linux_os/guide/system/network/networkmanager/var_networkmanager_dns_mode.var
index abab5ce6826..f5f960cb942 100644
--- a/linux_os/guide/system/network/networkmanager/var_networkmanager_dns_mode.var
+++ b/linux_os/guide/system/network/networkmanager/var_networkmanager_dns_mode.var
@@ -17,3 +17,4 @@ operator: 'equals'
 options:
     none: none
     default: default
+    explicit_default: default
diff --git a/tests/data/profile_stability/rhel9/stig.profile b/tests/data/profile_stability/rhel9/stig.profile
index 82d055ad9a2..e8233026b00 100644
--- a/tests/data/profile_stability/rhel9/stig.profile
+++ b/tests/data/profile_stability/rhel9/stig.profile
@@ -567,7 +567,7 @@ selections:
 - var_rekey_limit_size=1G
 - var_rekey_limit_time=1hour
 - sshd_approved_ciphers=stig_rhel9
-- var_networkmanager_dns_mode=none
+- var_networkmanager_dns_mode=explicit_default
 - var_multiple_time_servers=stig
 - var_time_service_set_maxpoll=18_hours
 - var_user_initialization_files_regex=all_dotfiles
diff --git a/tests/data/profile_stability/rhel9/stig_gui.profile b/tests/data/profile_stability/rhel9/stig_gui.profile
index d2f36a33b81..6b4a9702cd6 100644
--- a/tests/data/profile_stability/rhel9/stig_gui.profile
+++ b/tests/data/profile_stability/rhel9/stig_gui.profile
@@ -574,7 +574,7 @@ selections:
 - var_rekey_limit_size=1G
 - var_rekey_limit_time=1hour
 - sshd_approved_ciphers=stig_rhel9
-- var_networkmanager_dns_mode=none
+- var_networkmanager_dns_mode=explicit_default
 - var_multiple_time_servers=stig
 - var_time_service_set_maxpoll=18_hours
 - var_user_initialization_files_regex=all_dotfiles