Merge pull request #348 from ansible-lockdown/root_user_check

root password and other improvements
2025-06-19 17:28:45 +02:00 · 2025-06-19 17:28:45 +02:00 · 3dfa4f7e86
commit 3dfa4f7e86
parent 27dc592c12 3ea5b92259
7 changed files with 33 additions and 28 deletions
--- a/tasks/prelim.yml
+++ b/tasks/prelim.yml
@ -4,9 +4,7 @@
 # List users in order to look files inside each home directory

 - name: "PRELIM | Include audit specific variables"
-  when:
-    - run_audit or audit_only
-    - setup_audit
+  when: run_audit or audit_only or setup_audit
  tags:
    - setup_audit
    - run_audit
@ -14,9 +12,7 @@
    file: audit.yml

 - name: "PRELIM | Include pre-remediation audit tasks"
-  when:
-    - run_audit or audit_only
-    - setup_audit
+  when: run_audit or audit_only or setup_audit
  tags: run_audit
  ansible.builtin.import_tasks: pre_remediation_audit.yml

@ -260,7 +256,7 @@
      rhel9cis_rule_5_1_11
  ansible.builtin.stat:
    path: /etc/ssh/sshd_config.d/50-redhat.conf
-  register: discovered_sshd_50_redhat_file
+  register: prelim_sshd_50_redhat_file

 - name: "PRELIM | AUDIT | Capture pam security related files"
  tags: always