Puppet Class: cis_security_hardening::rules::auditd_service

Defined in:
manifests/rules/auditd_service.pp

Summary

Ensure auditd service is enabled .

Overview

Turn on the auditd daemon to record system events.

Rationale: The capturing of system events provides system administrators with information to allow them to determine if unauthorized access to their system is occurring.

Examples:

class { 'cis_security_hardening::rules::sec_auditd_service':
          enforce => true,
}
include cis_security_hardening::rules::auditd_service

Parameters:

  • enforce (Boolean) (defaults to: false)

    Sets rule enforcement. If set to true, code will be exeuted to bring the system into a comliant state.



22
23
24
25
26
27
28
29
30
31
 
# File 'manifests/rules/auditd_service.pp', line 22

class cis_security_hardening::rules::auditd_service (
  Boolean $enforce = false,
) {
  if $enforce {
    ensure_resource('service', ['auditd'], {
        ensure => running,
        enable => true,
    })
  }
}