Skip to content

PCI-DSS v3 Control Baseline for Red Hat Enterprise Linux 7 - Ansible role generated from the ComplianceAsCode project

Notifications You must be signed in to change notification settings

mgmt-sa-tiger-team/ansible-rhel7-pci-dss-role

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

44 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

PCI-DSS v3 Control Baseline for Red Hat Enterprise Linux 7

Build Status Ansible Role GitHub release

Ansible remediation role for profile pci-dss
Profile Title: PCI-DSS v3 Control Baseline for Red Hat Enterprise Linux 7 Profile Description:
Ensures PCI-DSS v3 related security configuration settings are applied.

Benchmark ID: RHEL-7

XCCDF Version: 1.1

This file was generated by OpenSCAP 1.2.17 using:
$ oscap xccdf generate fix --profile pci-dss --template urn:xccdf:fix:script:ansible xccdf-file.xml

This script is generated from an OpenSCAP profile without preliminary evaluation.
It attempts to fix every selected rule, even if the system is already compliant.

How to apply this remediation role:
$ ansible-playbook -i "192.168.1.155," playbook.yml
$ ansible-playbook -i inventory.ini playbook.yml

Requirements

  • Ansible version 2.3 or higher

Role Variables

To customize the role to your liking, check out the list of variables.

Dependencies

N/A

Example Playbook

Run ansible-galaxy install RedHatOfficial.rhel7_pci_dss to download and install the role. Then you can use the following playbook snippet.

- hosts: all
  roles:
     - { role: RedHatOfficial.rhel7_pci_dss }

Then first check the playbook using (on the localhost):

ansible-playbook -i "localhost," -c local --check playbook.yml

To deploy it, use (this may change configuration of your local machine!):

ansible-playbook -i "localhost," -c local playbook.yml

License

BSD-3-Clause

Author Information

This Ansible remediation role has been generated from the body of security policies developed by the SCAP Security Guide project. Please see https://github.com/OpenSCAP/scap-security-guide/blob/master/Contributors.md for an updated list of authors and contributors.

About

PCI-DSS v3 Control Baseline for Red Hat Enterprise Linux 7 - Ansible role generated from the ComplianceAsCode project

Resources

Stars

Watchers

Forks

Packages

No packages published