|
@@ -48,7 +48,7 @@
|
|
|
command: hostname -s
|
|
command: hostname -s
|
|
|
register: short_hostname
|
|
register: short_hostname
|
|
|
changed_when: false
|
|
changed_when: false
|
|
|
- tags: [ validate, security ]
|
|
|
|
|
|
|
+ tags: security
|
|
|
|
|
|
|
|
- name: Verify the hostname is not blank in hostname
|
|
- name: Verify the hostname is not blank in hostname
|
|
|
fail:
|
|
fail:
|
|
@@ -70,7 +70,7 @@
|
|
|
register: domain_name_set
|
|
register: domain_name_set
|
|
|
changed_when: false
|
|
changed_when: false
|
|
|
failed_when: false
|
|
failed_when: false
|
|
|
- tags: [ validate, security ]
|
|
|
|
|
|
|
+ tags: security
|
|
|
|
|
|
|
|
- name: Verify the domain name is not blank in hostname
|
|
- name: Verify the domain name is not blank in hostname
|
|
|
fail:
|
|
fail:
|
|
@@ -81,7 +81,7 @@
|
|
|
- name: Set fact for the domain name in hostname
|
|
- name: Set fact for the domain name in hostname
|
|
|
set_fact:
|
|
set_fact:
|
|
|
ms_domain_name: "{{ domain_name_set.stdout }}"
|
|
ms_domain_name: "{{ domain_name_set.stdout }}"
|
|
|
- tags: [ validate, security ]
|
|
|
|
|
|
|
+ tags: security
|
|
|
|
|
|
|
|
- name: Validate the domain name set on the host
|
|
- name: Validate the domain name set on the host
|
|
|
assert:
|
|
assert:
|
|
@@ -95,7 +95,7 @@
|
|
|
command: hostname
|
|
command: hostname
|
|
|
register: machine_hostname
|
|
register: machine_hostname
|
|
|
changed_when: false
|
|
changed_when: false
|
|
|
- tags: [ validate, security ]
|
|
|
|
|
|
|
+ tags: security
|
|
|
|
|
|
|
|
- name: Add host name in hosts file
|
|
- name: Add host name in hosts file
|
|
|
lineinfile:
|
|
lineinfile:
|
|
@@ -162,8 +162,9 @@
|
|
|
|
|
|
|
|
- name: Prepare user list
|
|
- name: Prepare user list
|
|
|
set_fact:
|
|
set_fact:
|
|
|
- user_list: "{{ lookup('vars', 'user').split()| unique | select| list }}"
|
|
|
|
|
|
|
+ user_list: "{{ lookup('vars', 'user').split()| unique | select| list }}"
|
|
|
when: user | length > 1
|
|
when: user | length > 1
|
|
|
|
|
+ tags: security
|
|
|
|
|
|
|
|
- name: validate user
|
|
- name: validate user
|
|
|
assert:
|
|
assert:
|
|
@@ -173,6 +174,7 @@
|
|
|
success_msg: "{{ user_success_msg }}"
|
|
success_msg: "{{ user_success_msg }}"
|
|
|
fail_msg: "{{ user_fail_msg }}"
|
|
fail_msg: "{{ user_fail_msg }}"
|
|
|
with_items: "{{ user_list }}"
|
|
with_items: "{{ user_list }}"
|
|
|
|
|
+ tags: [ validate, security ]
|
|
|
when:
|
|
when:
|
|
|
- user | length > 1
|
|
- user | length > 1
|
|
|
|
|
|
|
@@ -182,3 +184,4 @@
|
|
|
- allow_deny == 'Allow' or allow_deny == 'Deny'
|
|
- allow_deny == 'Allow' or allow_deny == 'Deny'
|
|
|
success_msg: "{{ allow_deny_success_msg }}"
|
|
success_msg: "{{ allow_deny_success_msg }}"
|
|
|
fail_msg: "{{ allow_deny_fail_msg }}"
|
|
fail_msg: "{{ allow_deny_fail_msg }}"
|
|
|
|
|
+ tags: [ validate, security ]
|
abhishek-sa1