diff --git a/linux_os/guide/system/auditing/bls_audit_option/kubernetes/shared.yml b/linux_os/guide/system/auditing/coreos_audit_option/kubernetes/shared.yml
similarity index 100%
rename from linux_os/guide/system/auditing/bls_audit_option/kubernetes/shared.yml
rename to linux_os/guide/system/auditing/coreos_audit_option/kubernetes/shared.yml
diff --git a/linux_os/guide/system/auditing/bls_audit_option/rule.yml b/linux_os/guide/system/auditing/coreos_audit_option/rule.yml
similarity index 98%
rename from linux_os/guide/system/auditing/bls_audit_option/rule.yml
rename to linux_os/guide/system/auditing/coreos_audit_option/rule.yml
index 23f00842ebbb..7879ae9cd52b 100644
--- a/linux_os/guide/system/auditing/bls_audit_option/rule.yml
+++ b/linux_os/guide/system/auditing/coreos_audit_option/rule.yml
@@ -48,7 +48,7 @@ ocil: |-
     <br />
 
 template:
-    name: bls_entries_option
+    name: coreos_kernel_option
     vars:
         arg_name: audit
         arg_value: '1'
diff --git a/rhcos4/profiles/moderate.profile b/rhcos4/profiles/moderate.profile
index e3348add8abe..a808158bbfd4 100644
--- a/rhcos4/profiles/moderate.profile
+++ b/rhcos4/profiles/moderate.profile
@@ -548,8 +548,8 @@ selections:
 
     # AU-3
     - package_audit_installed
-    - bls_audit_option
     - grub2_audit_backlog_limit_argument
+    - coreos_audit_option
     #- grub2_slub_debug_argument
     - grub2_page_poison_argument
     - grub2_vsyscall_argument
diff --git a/shared/templates/template_OVAL_coreos_kernel_option b/shared/templates/template_OVAL_coreos_kernel_option
new file mode 100644
index 000000000000..9a161ba17368
--- /dev/null
+++ b/shared/templates/template_OVAL_coreos_kernel_option
@@ -0,0 +1,71 @@
+<def-group>
+  <definition class="compliance" id="{{{ _RULE_ID }}}" version="2">
+    <metadata>
+      <title>Ensure that the most recent (default) CoreOS boot loader entry is configured to run Linux operating system with argument {{{ ARG_NAME_VALUE }}}</title>
+      {{{- oval_affected(products) }}}
+      <description>Ensure {{{ ARG_NAME_VALUE }}} option is configured in the 'options' line in /boot/loader/entries/ostree-2-*.conf (or ostree-1-*.conf if the second version does not exists).</description>
+    </metadata>
+    <criteria operator="OR">
+        <criteria operator="AND">
+            <criterion test_ref="test_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_options"
+            comment="Check if {{{ ARG_NAME_VALUE }}} is present in the 'options' line in /boot/loader/entries/ostree-2-*.conf (if it does exists)" />
+        </criteria>
+        <criteria operator="AND">
+            <criterion test_ref="test_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_1_options"
+            comment="Check if {{{ ARG_NAME_VALUE }}} is present in the 'options' line in /boot/loader/entries/ostree-1-*.conf" />
+            <criterion test_ref="test_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_does_not_exists"
+            comment="Check if /boot/loader/entries/ostree-2-*.conf is not present" />
+        </criteria>
+     </criteria>
+  </definition>
+
+  <ind:textfilecontent54_test id="test_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_options"
+  comment="check for kernel option {{{ ARG_NAME_VALUE }}} in /boot/loader/entries/ostree-2-*.conf"
+  check="all" check_existence="all_exist" version="1">
+    <ind:object object_ref="object_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_options" />
+    <ind:state state_ref="state_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_option" />
+  </ind:textfilecontent54_test>
+
+  <ind:textfilecontent54_object id="object_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_options"
+  version="1">
+    <ind:filepath operation="pattern match">^/boot/loader/entries/ostree-2-*\.conf$</ind:filepath>
+    <ind:pattern operation="pattern match">^options (.*)$</ind:pattern>
+    <ind:instance datatype="int" operation="greater than or equal">1</ind:instance>
+  </ind:textfilecontent54_object>
+
+  <ind:textfilecontent54_state id="state_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_option"
+  version="1">
+    <ind:subexpression datatype="string" operation="pattern match">^(?:.*\s)?{{{ ESCAPED_ARG_NAME_VALUE }}}(?:\s.*)?$</ind:subexpression>
+  </ind:textfilecontent54_state>
+
+  <ind:textfilecontent54_test id="test_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_1_options"
+  comment="check for kernel option {{{ ARG_NAME_VALUE }}} in /boot/loader/entries/ostree-1-*.conf"
+  check="all" check_existence="all_exist" version="1">
+    <ind:object object_ref="object_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_1_options" />
+    <ind:state state_ref="state_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_1_option" />
+  </ind:textfilecontent54_test>
+
+  <ind:textfilecontent54_object id="object_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_1_options"
+  version="1">
+    <ind:filepath operation="pattern match">^/boot/loader/entries/ostree-1-*\.conf$</ind:filepath>
+    <ind:pattern operation="pattern match">^options (.*)$</ind:pattern>
+    <ind:instance datatype="int" operation="greater than or equal">1</ind:instance>
+  </ind:textfilecontent54_object>
+
+  <ind:textfilecontent54_state id="state_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_1_option"
+  version="1">
+    <ind:subexpression datatype="string" operation="pattern match">^(?:.*\s)?{{{ ESCAPED_ARG_NAME_VALUE }}}(?:\s.*)?$</ind:subexpression>
+  </ind:textfilecontent54_state>
+
+  <unix:file_test id="test_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_does_not_exists" check="all" check_existence="none_exist"
+  comment="Check if /boot/loader/entries/ostree-2-*.conf is not present"
+  version="1">
+    <unix:object object_ref="object_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_does_not_exists" />
+  </unix:file_test>
+
+  <unix:file_object id="object_coreos_{{{ SANITIZED_ARG_NAME }}}_entry_2_does_not_exists"
+  version="1">
+    <unix:filepath operation="pattern match">^/boot/loader/entries/ostree-2-*\.conf</unix:filepath>
+  </unix:file_object>
+
+</def-group>
diff --git a/ssg/templates.py b/ssg/templates.py
index a27fbb6cb614..e238ed76a09c 100644
--- a/ssg/templates.py
+++ b/ssg/templates.py
@@ -380,6 +380,11 @@ def zipl_bls_entries_option(data, lang):
     return bls_entries_option(data, lang)
 
 
+@template(["oval"])
+def coreos_kernel_option(data, lang):
+    return bls_entries_option(data, lang)
+
+
 class Builder(object):
     """
     Class for building all templated content for a given product.