search

ansible-lockdown / UBUNTU22-CIS

Ansible role for Ubuntu22 CIS Baseline
https://ansible-lockdown.readthedocs.io/en/latest/
MIT License
160 stars 70 forks source link

Fixing syntax for 1.8.4, sub-task | session profile | #92

Closed ipruteanu-sie closed 10 months ago

ipruteanu-sie commented 10 months ago

Overall Review of Changes: Fixing syntax issues identified for 1.8.4, sub-task | session profile. Issue Fixes:

91

Enhancements: N/A

How has this been tested?: Manually, via CIS(nix_gdm_screen_lock_chk.sh), as this failure:

- Audit Result:
  ** FAIL **
 - Reason(s) for audit failure:

 - The "local" doesn't exist.

- Correctly set:

 - The "idle-delay" option is set to "900" seconds in "/etc/dconf/db/local.d/00-screensaver"
 - The "lock-delay" option is set to "5" seconds in "/etc/dconf/db/local.d/00-screensaver"
 - The "local" profile exists in the dconf database

changed to a pass:

- Audit Result:
  ** PASS **

 - The "idle-delay" option is set to "900" seconds in "/etc/dconf/db/local.d/00-screensaver"
 - The "lock-delay" option is set to "5" seconds in "/etc/dconf/db/local.d/00-screensaver"
 - The "local" profile exists
 - The "local" profile exists in the dconf database