openstack-ansible-security
==========================

The goal of the openstack-ansible-security role is to improve security within [openstack-ansible](https://github.com/openstack/openstack-ansible) deployments. The role is based on the [Security Technical Implementation Guide (STIG)](http://iase.disa.mil/stigs/Pages/index.aspx) for [Red Hat Enterprise Linux 6](https://www.stigviewer.com/stig/red_hat_enterprise_linux_6/).

Requirements
------------

This role can be used with or without the openstack-ansible role. It requires
Ansible 1.8.3 at a minimum.

Role Variables
--------------

All of the variables for this role are in `defaults/main.yml`.

Dependencies
------------

This role has no dependencies.

Example Playbook
----------------

Using the role is fairly straightforward:

    - hosts: servers
      roles:
         - openstack-ansible-security

Running with Vagrant
--------------------

Security Ansible can be easily run for testing using Vagrant.

To do so run:
    `vagrant destroy` To destroy any previously created Vagrant setup
    `vagrant up` Spin up Ubuntu Trusty VM and run ansible-security against it

License
-------

Apache 2.0

Author Information
------------------

For more information, join `#openstack-ansible` on Freenode.