feat: add option to reboot host automatically
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/push Build is passing
Details
This commit is contained in:
parent
5d498096c3
commit
cffe9f7dc0
|
@ -9,6 +9,7 @@ auditd_exclude_rule_stages: []
|
||||||
# This option prevents auditd from performing change/restart actions at runtime and requires a reboot instead.
|
# This option prevents auditd from performing change/restart actions at runtime and requires a reboot instead.
|
||||||
# For security reasons, this option should only be disabled for testing purposes.
|
# For security reasons, this option should only be disabled for testing purposes.
|
||||||
auditd_refuse_manual_stop: True
|
auditd_refuse_manual_stop: True
|
||||||
|
auditd_reboot_on_change: False
|
||||||
|
|
||||||
# @var auditd_config_immutable:description: >
|
# @var auditd_config_immutable:description: >
|
||||||
# The auditd daemon is configured to use the augenrules program to read audit rules during
|
# The auditd daemon is configured to use the augenrules program to read audit rules during
|
||||||
|
|
|
@ -9,3 +9,13 @@
|
||||||
listen: __auditd_restart
|
listen: __auditd_restart
|
||||||
become: True
|
become: True
|
||||||
become_user: root
|
become_user: root
|
||||||
|
|
||||||
|
- name: Reboot server
|
||||||
|
reboot:
|
||||||
|
reboot_timeout: 600
|
||||||
|
when:
|
||||||
|
- auditd_reboot_on_change | bool
|
||||||
|
- auditd_refuse_manual_stop | bool
|
||||||
|
listen: __auditd_restart
|
||||||
|
become: True
|
||||||
|
become_user: root
|
||||||
|
|
Loading…
Reference in New Issue