From a6ce1ef1bf9a492d4ee61b9a57c6413ca430069a Mon Sep 17 00:00:00 2001
From: Mark Bolwell <mark.bollyuk@gmail.com>
Date: Tue, 10 Dec 2024 10:18:09 +0000
Subject: [PATCH 1/3] updated auditd restart handler

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
---
 handlers/main.yml | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/handlers/main.yml b/handlers/main.yml
index c302106..31e784d 100644
--- a/handlers/main.yml
+++ b/handlers/main.yml
@@ -98,8 +98,15 @@
   when:
       - auditd_immutable_check.stdout == '1'
 
-- name: Restart auditd
-  ansible.builtin.shell: service auditd restart
+- name: Stop auditd process
+  ansible.builtin.shell: systemctl kill auditd
+  listen: Restart auditd
+
+- name: Start auditd process
+  ansible.builtin.systemd_service:
+    name: auditd
+    state: started
+  listen: Restart auditd
 
 - name: Change_requires_reboot
   ansible.builtin.set_fact:

From 088cd51931f2b07d8d655903615cbb0292523cfd Mon Sep 17 00:00:00 2001
From: Mark Bolwell <mark.bollyuk@gmail.com>
Date: Tue, 10 Dec 2024 10:18:25 +0000
Subject: [PATCH 2/3] Updated auditd template changed warning

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
---
 tasks/auditd.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tasks/auditd.yml b/tasks/auditd.yml
index 62f2794..82ee5de 100644
--- a/tasks/auditd.yml
+++ b/tasks/auditd.yml
@@ -23,7 +23,7 @@
   ansible.builtin.import_tasks:
       file: warning_facts.yml
   vars:
-      warn_control_id: 'Auditd template updated, see diff output for details'
+      warn_control_id: 'Auditd template updated, validate as expected'
   when:
       - rhel9cis_auditd_template_updated.changed
       - rhel9cis_auditd_file.stat.exists

From 7a780a4702e358aa13d8dfdbb2f08d00bd67d769 Mon Sep 17 00:00:00 2001
From: Mark Bolwell <mark.bollyuk@gmail.com>
Date: Tue, 10 Dec 2024 10:29:50 +0000
Subject: [PATCH 3/3] updated for lint

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
---
 handlers/main.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/handlers/main.yml b/handlers/main.yml
index 31e784d..cea6940 100644
--- a/handlers/main.yml
+++ b/handlers/main.yml
@@ -104,8 +104,8 @@
 
 - name: Start auditd process
   ansible.builtin.systemd_service:
-    name: auditd
-    state: started
+      name: auditd
+      state: started
   listen: Restart auditd
 
 - name: Change_requires_reboot