Issue found when investigating fails on CIS Compliance Profile Centos 7 & RHEL 7 controls 4.1.1.2 & 4.1.1.3.

Currently, checks are being performed on the audit.conf file for things such as:
space_left_action = email action_mail_acct = root admin_space_left_action = halt

The values in the audit.conf file is currently:
space_left_action = SYSLOG action_mail_acct = root admin_space_left_action = SUSPEND

At the moment the auditd cookbook does not currently add/change the configuration in the audit.conf file.

Hey There
It looks like this is the first issue you've filed against the chef-cookbooks project. I'm here to offer you a bit of extra help to make sure we can quickly get back to you.
Make sure you've filled out all the fields in our issue template. Make sure you've provided us with the version of chef-client you're running, your operating system and the version of the cookbook. If you're not using the most up to date version of the cookbook then please make sure to update first. Lots of things change between versions even if you're issue isn't listed in the changelog. Finally please give us a detailed description of the issue you're having. The more we know about what you're trying to do, what actually happens, and how you can reproduce the problem, the better.

If you're looking for more immediate troubleshooting help make sure to check out #general on the Chef Community Slack. There's plenty of folks there willing to lend a helping hand. Thanks for the first issue. We hope we can get back to you soon with a solution.