1335d0b0df
This patch adds documentation for the audit rule changes found in: https://review.openstack.org/395783 Implements: blueprint security-rhel7-stig Change-Id: I7e30f10fa0a80824cca70c6a4d77488d28573f92
425 B
425 B
---id: RHEL-07-030710 status: implemented tag: auditd ---
The tasks add a rule to auditd that logs each time that an account is modified. This includes changes to the following files:
/etc/group/etc/passwd/etc/gshadow/etc/shadow/etc/security/opasswd
Deployers can opt-out of this change by setting an Ansible variable:
security_rhel7_audit_account_actions: no