Skip to content

sycofly/ansible-os-rhel8-tewhutaora

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits

defaults

defaults

 
 

files

files

 
 

handlers

handlers

 
 

meta

meta

 
 

tasks

tasks

 
 

templates

templates

 
 

vars

vars

 
 

.gitattributes

.gitattributes

 
 

README.md

README.md

 
 

Repository files navigation

Redhat 8 GSA Benchmark

This role configures Red Hat Enterprise Linux (RHEL) 8.0 machine to be GSA compliant. Level 1 and 2 profiles will be applied by default based on RHEL 8.0 GSA Benchmarks

Role Variables

There are many role variables defined in ./defaults/main.yml.

Hardening will be applied to the following configurations by default:

  • General Configurations
  • Services Configurations
  • Network Configurations
  • Logging and Auditing Configurations
  • Access, Authentication and Authorization Configurations
  • System Maintenance Configurations

Above high level configurations and other fine-grained configurations can be enabled/disabled using variabled defined in in defaults/main.yml.

The configuration will not:

  • Install and configure AIDE
  • Install and configure NTP
  • Configure the /etc/group wheel configurations

Other settings and services are listed. Please review to ensure they meet your organizational requirements.

Dependencies

Ansible >= 2.7

Example Playbook

---
- name: Harden Server
  hosts: all
  become: yes

  roles:
    - ansible-os-rhel8

How to test locally

ansible-playbook playbook.yml --connection=local

CircleCI Intergration

This role is used by an up-stream git repo. This repo itself doesn't have CI yet.

License

BSD.

About

Ansible role for hardening Redhat 8 AMI

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 100.0%