Criminal Justice Information Services (CJIS) Security Policy

Ansible Role for CJIS Security Policy

Profile Description:
This profile follows the FBI's CJIS version 5.4 Security Policy. You can find a copy of this policy at the CJIS Security Policy Resource Center:
https://www.fbi.gov/services/cjis/cjis-security-policy-resource-center

The tasks in this role are created using OpenSCAP. For more details on how to create Ansible playbooks, check the OpenSCAP project here: https://github.com/OpenSCAP/openscap

If you want to report a problem or suggest improvements for any Ansible tasks that are not working or are missing in this role, visit the ComplianceAsCode project at https://github.com/ComplianceAsCode/content

Requirements

• Ansible version 2.9 or higher

Role Variables

To customize this role, you can find the list of variables.

Dependencies

None

Example Role Usage

To download and install the role, run ansible-galaxy install RedHatOfficial.rhel8_cjis. Then, use the following playbook snippet to run the role:

- hosts: all
  roles:
     - { role: RedHatOfficial.rhel8_cjis }

Next, check the playbook with this command (on the localhost):

ansible-playbook -i "localhost," -c local --check playbook.yml

To actually run it (this may change your local machine's settings!):

ansible-playbook -i "localhost," -c local playbook.yml

License

BSD-3-Clause

Author Information

This Ansible role has been developed based on security policies by the ComplianceAsCode project. For a current list of authors and contributors, visit: https://github.com/complianceascode/content/blob/master/Contributors.md