CIS Red Hat Enterprise Linux 9 Benchmark for Level 2 - Server

Ansible Role for CIS Red Hat Enterprise Linux 9 Benchmark for Level 2 - Server

Profile Description:
This profile sets a standard for the "Level 2 - Server"
configuration from the Center for Internet Security® Red Hat Enterprise
Linux 9 Benchmark™, version 1.0.0, released on November 28, 2022.
It includes content from the Center for Internet Security®
Red Hat Enterprise Linux 9 CIS Benchmarks™.

The tasks in this role are created using OpenSCAP.
For more information on how to create Ansible playbooks with OpenSCAP, visit https://github.com/OpenSCAP/openscap.

If you want to suggest a fix or improvement for a task that is not working or is missing in this role, visit the ComplianceAsCode project at https://github.com/ComplianceAsCode/content.

Requirements

• Ansible version 2.9 or higher

Role Variables

To adjust the role to meet your needs, check the list of variables.

Dependencies

N/A

Example Role Usage

Run ansible-galaxy install RedHatOfficial.rhel9_cis to download and install the role. Then, you can use this playbook snippet to run the Ansible role:

- hosts: all
  roles:
     - { role: RedHatOfficial.rhel9_cis }

Next, verify the playbook on your local machine with this command:

ansible-playbook -i "localhost," -c local --check playbook.yml

To apply it (this may change settings on your local machine!):

ansible-playbook -i "localhost," -c local playbook.yml

License

BSD-3-Clause

Author Information

This Ansible role was created based on security policies from the ComplianceAsCode project. For a current list of authors and contributors, please see https://github.com/complianceascode/content/blob/master/Contributors.md.