ansible-lockdown/RHEL9-CIS
3
0
Fork 1
mirror of https://github.com/ansible-lockdown/RHEL9-CIS.git synced 2025-12-27 15:33:06 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
RHEL9-CIS/vars/RedHat.yml
root@DERVISHx 9c12cc07b2
Ensure min/max days between password changes. 
Signed-off-by: root@DERVISHx <nuno.carvalho@siemens.com>
2023-11-02 16:39:57 +00:00

27 lines
No EOL
815 B
YAML
Raw Blame History

---
# OS Specific Settings
os_gpg_key_pubkey_name: gpg-pubkey-fd431d51-4ae0493b
os_gpg_key_pubkey_content: "Red Hat, Inc. (release key 2) <security@redhat.com> fd431d51"
# disable repo_gpgcheck due to OS default repos
rhel9cis_rule_enable_repogpg: false
# enable interactive users to be set min/max password change
rhel9cis_rule_5_6_1_2_set_user: true
# 5.6.1.1/2 Variable to be adjust so the rule sets password min/max
# This refers to the minimum UID that rule will start from
usr_min_uid: 1000
# Vars setup for overiding main.yml for rule 5.3.2
rhel9cis_sshd:
clientalivecountmax: 3
clientaliveinterval: 900
logingracetime: 60
# Group and user choose as being the default for this release
# Can also use;
# allowusers:
# denygroups:
allowgroups: wheel
denyusers: nobody
Reference in a new issue View git blame Copy permalink