Skip to content

Latest commit

 

History

History
56 lines (36 loc) · 1.39 KB

README.md

File metadata and controls

56 lines (36 loc) · 1.39 KB

Redhat 8 GSA Benchmark

This role configures Red Hat Enterprise Linux (RHEL) 8.0 machine to be GSA compliant. Level 1 and 2 profiles will be applied by default based on RHEL 8.0 GSA Benchmarks

Role Variables

There are many role variables defined in ./defaults/main.yml.

Hardening will be applied to the following configurations by default:

  • General Configurations
  • Services Configurations
  • Network Configurations
  • Logging and Auditing Configurations
  • Access, Authentication and Authorization Configurations
  • System Maintenance Configurations

Above high level configurations and other fine-grained configurations can be enabled/disabled using variabled defined in in defaults/main.yml.

The configuration will not:

  • Install and configure AIDE
  • Install and configure NTP
  • Configure the /etc/group wheel configurations

Other settings and services are listed. Please review to ensure they meet your organizational requirements.

Dependencies

Ansible >= 2.7

Example Playbook

---
- name: Harden Server
  hosts: all
  become: yes

  roles:
    - ansible-os-rhel8

How to test locally

ansible-playbook playbook.yml --connection=local

CircleCI Intergration

This role is used by an up-stream git repo. This repo itself doesn't have CI yet.

License

BSD.