name: "SCORED | 17.5.1 | PATCH | (L1) Ensure Audit Account Lockout is set to include Failure"
block:
name: "SCORED | 17.5.1 | AUDIT | (L1) Ensure Audit Account Lockout is set to include Failure"
win_shell: AuditPol /get /subcategory:"Account Lockout" -r | ConvertFrom-Csv | Select-Object -expand "Inclusion Setting"
changed_when: false
failed_when: false
register: rule_17_5_1_audit
name: "SCORED | 17.5.1 | PATCH | (L1) Ensure Audit Account Lockout is set to include Failure"
win_shell: AuditPol /set /subcategory:"Account Lockout" /failure:enable
when: "'Failure' not in rule_17_5_1_audit.stdout"
when:
name: "SCORED | 17.5.1 | PATCH | (L1) Ensure Audit Account Lockout is set to include Failure" block:
name: "SCORED | 17.5.1 | AUDIT | (L1) Ensure Audit Account Lockout is set to include Failure" win_shell: AuditPol /get /subcategory:"Account Lockout" -r | ConvertFrom-Csv | Select-Object -expand "Inclusion Setting" changed_when: false failed_when: false register: rule_17_5_1_audit
name: "SCORED | 17.5.1 | PATCH | (L1) Ensure Audit Account Lockout is set to include Failure" win_shell: AuditPol /set /subcategory:"Account Lockout" /failure:enable when: "'Failure' not in rule_17_5_1_audit.stdout" when: