Skip to content

sycofly/ansible-os-rhel8-tewhutaora

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
defaults
defaults
 
 
files
files
 
 
handlers
handlers
 
 
meta
meta
 
 
tasks
tasks
 
 
templates
templates
 
 
vars
vars
 
 
.gitattributes
.gitattributes
 
 
README.md
README.md
 
 

Repository files navigation

Redhat 8 GSA Benchmark

This role configures Red Hat Enterprise Linux (RHEL) 8.0 machine to be GSA compliant. Level 1 and 2 profiles will be applied by default based on RHEL 8.0 GSA Benchmarks

Role Variables

There are many role variables defined in ./defaults/main.yml.

Hardening will be applied to the following configurations by default:

  • General Configurations
  • Services Configurations
  • Network Configurations
  • Logging and Auditing Configurations
  • Access, Authentication and Authorization Configurations
  • System Maintenance Configurations

Above high level configurations and other fine-grained configurations can be enabled/disabled using variabled defined in in defaults/main.yml.

The configuration will not:

  • Install and configure AIDE
  • Install and configure NTP
  • Configure the /etc/group wheel configurations

Other settings and services are listed. Please review to ensure they meet your organizational requirements.

Dependencies

Ansible >= 2.7

Example Playbook

---
- name: Harden Server
  hosts: all
  become: yes

  roles:
    - ansible-os-rhel8

How to test locally

ansible-playbook playbook.yml --connection=local

CircleCI Intergration

This role is used by an up-stream git repo. This repo itself doesn't have CI yet.

License

BSD.

About

Ansible role for hardening Redhat 8 AMI

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 100.0%