Skip to content

Baseline

Go to Automation

View in GitLab

Description

This Ansible playbook applies a baseline configuration to Linux systems.
It first runs the linux.baseline role to establish a standard baseline configuration, ensuring servers meet predefined requirements and are configured consistently.
Afterwards, it conditionally applies CIS (Center for Internet Security) rules based on the Red Hat Enterprise Linux (RHEL) version detected: - Imports the vars int hte cis_rules_d09_settings.yml file where is defined which rules run in wich Wave (based on tags in Neon) - Applies the CIS role for RHEL 8, 9, or 10 using the d09.cis_roles collection. - Each CIS role is only applied if the server matches the corresponding RHEL version.

The playbook requires the target server to have access to online repositories for package installations and updates.

Credentials

  • sys_ansible_local

Input

Variable Description
target The target hosts or group for baseline configuration

Output

None

Dependencies