ansible-lockdown/RHEL9-CIS
3
0
Fork 1
mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2026-03-25 22:37:11 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

fixed tags and audit logic

Browse source 
Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
This commit is contained in:
Mark Bolwell 2026-02-03 08:57:45 +00:00
parent eb9c96f335
commit c7567a98ac
No known key found for this signature in database
GPG key ID: 997FF7FE93AEB5B9
1 changed files with 10 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

12
tasks/prelim.yml
View file

@ -4,7 +4,9 @@
# List users in order to look up files inside each home directory # List users in order to look up files inside each home directory
- name: "PRELIM | Include audit specific variables" - name: "PRELIM | Include audit specific variables"
when: run_audit or audit_only or setup_audit when:
- run_audit or audit_only
- setup_audit
tags: tags:
- setup_audit - setup_audit
- run_audit - run_audit
@ -12,7 +14,8 @@
file: audit.yml file: audit.yml
- name: "PRELIM | Include pre-remediation audit tasks" - name: "PRELIM | Include pre-remediation audit tasks"
when: run_audit or audit_only or setup_audit when:
- run_audit or audit_only
tags: run_audit tags: run_audit
ansible.builtin.import_tasks: pre_remediation_audit.yml ansible.builtin.import_tasks: pre_remediation_audit.yml
@ -92,6 +95,11 @@
- rhel9cis_rule_1_2_1_1 - rhel9cis_rule_1_2_1_1
- ansible_facts.distribution != 'RedHat' - ansible_facts.distribution != 'RedHat'
- ansible_facts.distribution != 'OracleLinux' - ansible_facts.distribution != 'OracleLinux'
tags:
- level1-server
- level1-workstation
- rule_1.2.1.1
- gpg
ansible.builtin.package: ansible.builtin.package:
name: "{{ gpg_key_package }}" name: "{{ gpg_key_package }}"
state: latest state: latest