sr2/RHEL9-CIS
4
0
Fork 0
forked from ansible-lockdown/RHEL9-CIS
Code Activity

Merge pull request #264 from ansible-lockdown/auditd_restart

Browse source 
Update to how auditd restarts
This commit is contained in:
uk-bolly 2024-12-11 14:51:08 +00:00 committed by GitHub
commit 07dc7fb302
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 10 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

11
handlers/main.yml
View file

@ -98,8 +98,15 @@
when: when:
- auditd_immutable_check.stdout == '1' - auditd_immutable_check.stdout == '1'
- name: Restart auditd - name: Stop auditd process
ansible.builtin.shell: service auditd restart ansible.builtin.shell: systemctl kill auditd
listen: Restart auditd
- name: Start auditd process
ansible.builtin.systemd_service:
name: auditd
state: started
listen: Restart auditd
- name: Change_requires_reboot - name: Change_requires_reboot
ansible.builtin.set_fact: ansible.builtin.set_fact:

2
tasks/auditd.yml
View file

@ -23,7 +23,7 @@
ansible.builtin.import_tasks: ansible.builtin.import_tasks:
file: warning_facts.yml file: warning_facts.yml
vars: vars:
warn_control_id: 'Auditd template updated, see diff output for details' warn_control_id: 'Auditd template updated, validate as expected'
when: when:
- rhel9cis_auditd_template_updated.changed - rhel9cis_auditd_template_updated.changed
- rhel9cis_auditd_file.stat.exists - rhel9cis_auditd_file.stat.exists