49 lines
1.2 KiB
Markdown
49 lines
1.2 KiB
Markdown
openstack-ansible-security
|
|
==========================
|
|
|
|
The goal of the openstack-ansible-security role is to improve security within [openstack-ansible](https://github.com/openstack/openstack-ansible) deployments. The role is based on the [Security Technical Implementation Guide (STIG)](http://iase.disa.mil/stigs/Pages/index.aspx) for [Red Hat Enterprise Linux 6](https://www.stigviewer.com/stig/red_hat_enterprise_linux_6/).
|
|
|
|
Requirements
|
|
------------
|
|
|
|
This role can be used with or without the openstack-ansible role. It requires
|
|
Ansible 1.8.3 at a minimum.
|
|
|
|
Role Variables
|
|
--------------
|
|
|
|
All of the variables for this role are in `defaults/main.yml`.
|
|
|
|
Dependencies
|
|
------------
|
|
|
|
This role has no dependencies.
|
|
|
|
Example Playbook
|
|
----------------
|
|
|
|
Using the role is fairly straightforward:
|
|
|
|
- hosts: servers
|
|
roles:
|
|
- openstack-ansible-security
|
|
|
|
Running with Vagrant
|
|
--------------------
|
|
|
|
Security Ansible can be easily run for testing using Vagrant.
|
|
|
|
To do so run:
|
|
`vagrant destroy` To destroy any previously created Vagrant setup
|
|
`vagrant up` Spin up Ubuntu Trusty VM and run ansible-security against it
|
|
|
|
License
|
|
-------
|
|
|
|
Apache 2.0
|
|
|
|
Author Information
|
|
------------------
|
|
|
|
For more information, join `#openstack-ansible` on Freenode.
|