Skip to content
/ rhel_stig_6_7 Public

Some very simple playbooks that utilize roles for implementing DISA STIG for RHEL 6 and RHEL7

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

medberry/rhel_stig_6_7

BranchesTags

Repository files navigation

Cerner POC 2019-02-25 STIG Compliance and Remediation

As noted below, you ALWAYS want to run this playbook with tags. I need to put in an error condition if tags is blank. ANSIBLE_DEPRECATION_WARNINGS=false ANSIBLE_LOG_PATH=./ansible.log ansible-playbook -i ../centos.inventory -u centos --check --diff -v aex-oneoff.yml --tags "AEX_001,check-mode-tag" --skip-tags audit,prelim_tasks -l centos6old

This ^ is a oneline invocation of running the Altiris AEX

ANSIBLE_DEPRECATION_WARNINGS=false ANSIBLE_LOG_PATH=./ansible.log ansible-playbook -i ../centos.inventory -u centos --check --diff site.yml --tags "check-mode-tag,V-38668,V-38617,V-38475,V-38649,RHEL-07-020230,RHEL-07-021710,RHEL-07-040110,RHEL-07-010280,RHEL-07-020240,V-38454" --skip-tags audit,prelim_tasks -l centos6:centos7

This is a complete RHEL6 and RHEL7 audit/check-mode run

ANSIBLE_DEPRECATION_WARNINGS=false ANSIBLE_LOG_PATH=./ansible.log ansible-playbook -i ../centos.inventory -u centos --check --diff oneoff.yml --tags "ONEOFF-001,check-mode-tag,V-38668,RHEL-07-010280" --skip-tags audit,prelim_tasks -l centos6:centos7

This is the oneoff RPM validation test.

About

Some very simple playbooks that utilize roles for implementing DISA STIG for RHEL 6 and RHEL7

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published