CIS Red Hat Enterprise Linux 7 Benchmark for Level 2 - Server

Ansible Role for CIS Red Hat Enterprise Linux 7 Benchmark for Level 2 - Server

Profile Description:
This profile sets a basic standard based on the "Level 2 - Server"
settings from the Center for Internet Security® Red Hat Enterprise
Linux 7 Benchmark™, version 4.0.0, released on December 21, 2023.
It includes content from the Center for Internet Security®
Red Hat Enterprise Linux 7 CIS Benchmarks™.

The tasks in this role are created using OpenSCAP.
For more information about how to generate Ansible playbooks, visit https://github.com/OpenSCAP/openscap.

If you want to suggest a fix or improvement for any Ansible task that isn't working or is missing, check out the ComplianceAsCode project at https://github.com/ComplianceAsCode/content.

Requirements

• You need Ansible version 2.9 or higher.

Role Variables

To adjust the role to your preferences, look at the list of variables.

Dependencies

None

Example Role Usage

Run ansible-galaxy install RedHatOfficial.rhel7_cis to download and install the role. Then, you can use the following snippet in your playbook to run the Ansible role:

- hosts: all
  roles:
     - { role: RedHatOfficial.rhel7_cis }

Next, you can check your playbook using (on localhost) this example:

ansible-playbook -i "localhost," -c local --check playbook.yml

To actually run it (this might change settings on your local machine!):

ansible-playbook -i "localhost," -c local playbook.yml

License

BSD-3-Clause

Author Information

This Ansible role was created based on security policies from the ComplianceAsCode project. For a current list of authors and contributors, visit https://github.com/complianceascode/content/blob/master/Contributors.md.