diff --git a/tasks/section_5/cis_5.2.x.yml b/tasks/section_5/cis_5.2.x.yml
index de9617c..5d12709 100644
--- a/tasks/section_5/cis_5.2.x.yml
+++ b/tasks/section_5/cis_5.2.x.yml
@@ -278,7 +278,7 @@
 - name: "5.2.15 | PATCH | Ensure SSH warning banner is configured"
   ansible.builtin.lineinfile:
       path: "{{ rhel9_cis_sshd_config_file }}"
-      regexp: '^Banner'
+      regexp: "^#Banner|^Banner"
       line: 'Banner /etc/issue.net'
   when:
       - rhel9cis_rule_5_2_15
@@ -354,7 +354,7 @@
       - name: "5.2.20 | PATCH | Ensure SSH Idle Timeout Interval is configured | Add line in sshd_config for ClientAliveInterval"
         ansible.builtin.lineinfile:
             path: "{{ rhel9_cis_sshd_config_file }}"
-            regexp: '^ClientAliveInterval'
+            regexp: '^ClientAliveInterval|^#ClientAliveInterval'
             line: "ClientAliveInterval {{ rhel9cis_sshd['clientaliveinterval'] }}"
             validate: sshd -t -f %s
 
diff --git a/vars/RedHat.yml b/vars/RedHat.yml
index c5833a4..01c0817 100644
--- a/vars/RedHat.yml
+++ b/vars/RedHat.yml
@@ -6,3 +6,13 @@ os_gpg_key_pubkey_content: "Red Hat, Inc. (release key 2) <security@redhat.com>
 
 # disable repo_gpgcheck due to OS default repos
 rhel9cis_rule_enable_repogpg: false
+
+# Vars setup for overiding main.yml
+rhel9cis_sshd:
+    clientalivecountmax: 3
+    clientaliveinterval: 900
+    logingracetime: 60
+    # allowusers: 
+    allowgroups: sshd wheel
+    # denyusers:
+    # denygroups: