journal config are not scap conform

[tuxmaster5000]

When set journald settings via:

journald_settings => {
  'foo' => 'bar'
}

it will result in entry's like:

[Journal]
foo = bar

but the scap scanners will require:

[Journal]
foo=bar

without the spaces like it is written as comments the config file.

[TheMeier]

Whitespace immediately before or after the "=" is ignored
https://www.freedesktop.org/software/systemd/man/latest/systemd.syntax.html#

So it's valid systemd config. You should file an issue with the scanner instead

[mdc-webdb]

But the config that comes with it, are also without it.:

cat /etc/systemd/journald.conf 
#  This file is part of systemd.
#
#  systemd is free software; you can redistribute it and/or modify it under the
#  terms of the GNU Lesser General Public License as published by the Free
#  Software Foundation; either version 2.1 of the License, or (at your option)
#  any later version.
#
# Entries in this file show the compile time defaults. Local configuration
# should be created by either modifying this file, or by creating "drop-ins" in
# the journald.conf.d/ subdirectory. The latter is generally recommended.
# Defaults can be restored by simply deleting this file and all drop-ins.
#
# Use 'systemd-analyze cat-config systemd/journald.conf' to display the full config.
#
# See journald.conf(5) for details.

[Journal]
#Storage=auto
#Compress=yes
#Seal=yes
#SplitMode=uid
#SyncIntervalSec=5m
#RateLimitIntervalSec=30s
#RateLimitBurst=10000

Also in the man pages:
man 5 journald.conf

And man systemd.syntax
also show's that the preferred syntax is without spaces.