Red Hat Corporate Profile for Certified Cloud Providers (RH CCP)

Ansible Role for Red Hat Corporate Profile for Certified Cloud Providers (RH CCP)

Profile Description: This profile provides essential security settings recommended by Red Hat, Inc. for Red Hat Enterprise Linux 7 instances that are set up by Red Hat Certified Cloud Providers.

The tasks used in this role are created using OpenSCAP. For more information about how Ansible playbooks are generated, visit OpenSCAP project.

If you want to report a problem or suggest improvements for an Ansible task that isn't working or is missing in this role, check out the ComplianceAsCode project at ComplianceAsCode.

Requirements

• You need Ansible version 2.9 or newer.

Role Variables

To customize this role, you can find the list of variables.

Dependencies

None

Example Role Usage

To download and install the role, run:

ansible-galaxy install RedHatOfficial.rhel7_rht_ccp

Then, use the following playbook snippet to execute the Ansible role:

- hosts: all
  roles:
     - { role: RedHatOfficial.rhel7_rht_ccp }

To check the playbook on your local machine, use this command:

ansible-playbook -i "localhost," -c local --check playbook.yml

To actually run it (this could change your local machine's settings!):

ansible-playbook -i "localhost," -c local playbook.yml

License

BSD-3-Clause

Author Information

This Ansible role was created based on security policies from the ComplianceAsCode project. For a current list of authors and contributors, visit Contributors.