sr2/RHEL9-CIS
4
0
Fork 0
forked from ansible-lockdown/RHEL9-CIS
Code Activity

Small fixes part 3.

Browse source 
Signed-off-by: Diana-Maria Dumitru <diana.dumitru@siemens.com>
This commit is contained in:
Tomuta, Diana Maria (T CST SCC-RO) 2025-07-04 13:44:46 +03:00 committed by Diana-Maria Dumitru
parent 21fd466ec6
commit dfd5eb9a92
No known key found for this signature in database
GPG key ID: 03484C0A7C564FD5
1 changed files with 1 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

4
defaults/main.yml
View file

@ -604,7 +604,6 @@ rhel9cis_crypto_policy_module: ''
# using those listed in the 'rhel9cis_allowed_crypto_policies_modules' variable. # using those listed in the 'rhel9cis_allowed_crypto_policies_modules' variable.
rhel9cis_additional_crypto_policy_module: '' rhel9cis_additional_crypto_policy_module: ''
## Controls: ## Controls:
# - 1.7.1 - Ensure message of the day is configured properly # - 1.7.1 - Ensure message of the day is configured properly
# - 1.7.2 - Ensure local login warning banner is configured properly # - 1.7.2 - Ensure local login warning banner is configured properly
@ -976,7 +975,6 @@ rhel9cis_authselect_pkg_update: false # NOTE the risks if system is using SSSD
## Controls 5.3.x ## Controls 5.3.x
# This variable configures the name of the custom profile to be created and selected. # This variable configures the name of the custom profile to be created and selected.
# To be changed from default - cis_example_profile. This setting needs to be adjusted # To be changed from default - cis_example_profile. This setting needs to be adjusted
# in order to minimise risk. # in order to minimise risk.
@ -1110,7 +1108,7 @@ rhel9cis_force_user_mindays: false
# This variable governs, how many days before a password expires, the user will be warned. # This variable governs, how many days before a password expires, the user will be warned.
# CIS requires a value of at least 7. # CIS requires a value of at least 7.
rhel9cis_pass_warn_age: 7 rhel9cis_pass_warn_age: 7
#The following variable allows the forcing of number of days before warning users of password expiry # The following variable allows the forcing of number of days before warning users of password expiry
# This can break current connecting user access # This can break current connecting user access
rhel9cis_force_user_warnage: false rhel9cis_force_user_warnage: false