mirror of
https://github.com/ansible-lockdown/RHEL9-CIS.git
synced 2025-12-27 07:23:07 +00:00
add pkg fact and audit conditionals
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
This commit is contained in:
Mark Bolwell
parent
21875f5790
commit
3dcaa58291
1 changed files with 13 additions and 2 deletions
|
|
@ -6,6 +6,12 @@
|
||||||
autoremove: true
|
autoremove: true
|
||||||
changed_when: false
|
changed_when: false
|
||||||
|
|
||||||
|
- name: Gather the package facts after remediation
|
||||||
|
package_facts:
|
||||||
|
manager: auto
|
||||||
|
tags:
|
||||||
|
- always
|
||||||
|
|
||||||
- name: trigger update sysctl
|
- name: trigger update sysctl
|
||||||
shell: /bin/true
|
shell: /bin/true
|
||||||
args:
|
args:
|
||||||
|
|
@ -38,8 +44,13 @@
|
||||||
changed_when: true
|
changed_when: true
|
||||||
check_mode: false
|
check_mode: false
|
||||||
when:
|
when:
|
||||||
- "'auditd' in ansible_facts.packages"
|
- rhel9cis_rule_4_1_1_1 or
|
||||||
- rhel9cis_rule_4_1_3 or
|
rhel9cis_rule_4_1_1_2 or
|
||||||
|
rhel9cis_rule_4_1_1_3 or
|
||||||
|
rhel9cis_rule_4_1_2_1 or
|
||||||
|
rhel9cis_rule_4_1_2_2 or
|
||||||
|
rhel9cis_rule_4_1_2_3 or
|
||||||
|
rhel9cis_rule_4_1_3 or
|
||||||
rhel9cis_rule_4_1_4 or
|
rhel9cis_rule_4_1_4 or
|
||||||
rhel9cis_rule_4_1_5 or
|
rhel9cis_rule_4_1_5 or
|
||||||
rhel9cis_rule_4_1_6 or
|
rhel9cis_rule_4_1_6 or
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue