RedHatOfficial.rhel7-cjis

Criminal Justice Information Services (CJIS) Security Policy

Ansible Role for CJIS Security Policy

Profile Description:
This profile is based on the FBI's CJIS version 5.4 Security Policy. You can find a copy of this policy at the CJIS Security Policy Resource Center:
CJIS Security Policy Resource Center.

The tasks in this role are created using OpenSCAP. For more information on how to generate Ansible playbooks, visit the OpenSCAP project: OpenSCAP GitHub.

If you want to submit a fix or improvement for an Ansible task that is not working or missing in this role, check out the ComplianceAsCode project: ComplianceAsCode GitHub.

Requirements

• Ansible version 2.9 or later.

Role Variables

You can customize this role by looking at the list of variables.

Dependencies

None.

Example Role Usage

To download and install the role, run:
ansible-galaxy install RedHatOfficial.rhel7_cjis.

Then, you can use the following snippet in your playbook to run the Ansible role:

- hosts: all
  roles:
     - { role: RedHatOfficial.rhel7_cjis }

Next, check the playbook on your local machine using this command:

ansible-playbook -i "localhost," -c local --check playbook.yml

To apply it (this may change settings on your local machine!):

ansible-playbook -i "localhost," -c local playbook.yml

License

BSD-3-Clause

Author Information

This Ansible role was created based on security policies made by the ComplianceAsCode project. For the current list of authors and contributors, see: Contributors List.