dccce1d5cc
This patch gets the docs adjusted to work with the new RHEL 7 STIG version 1 release. The new STIG release has changed all of the numbering, but it maintains a link to (most) of the old STIG IDs in the XML. Closes-bug: 1676865 Change-Id: I65023fe63163c9804a3aec9dcdbf23c69bedb604
21 lines
418 B
ReStructuredText
21 lines
418 B
ReStructuredText
---
|
|
id: V-72197
|
|
status: implemented
|
|
tag: auditd
|
|
---
|
|
|
|
The tasks add a rule to auditd that logs each time that an account is modified.
|
|
This includes changes to the following files:
|
|
|
|
* ``/etc/group``
|
|
* ``/etc/passwd``
|
|
* ``/etc/gshadow``
|
|
* ``/etc/shadow``
|
|
* ``/etc/security/opasswd``
|
|
|
|
Deployers can opt-out of this change by setting an Ansible variable:
|
|
|
|
.. code-block:: yaml
|
|
|
|
security_rhel7_audit_account_actions: no
|