root account is locked - Githubissues

anthcourtney / ansible-role-cis-amazon-linux

Ansible role to apply CIS Amazon Linux Benchmark v2.0.0

MIT License

154 stars 140 forks source link

root account is locked #77

Open markuman opened 3 years ago

markuman commented 3 years ago

When I apply this role with

    cis_level_1_exclusions:
      - 5.4.4 # 5.4.4 Ensure default user umask is 027 or more restrictive
      - 3.4.2 # cis_hosts_allow_all_ips
      - 3.4.3 # 3.4.3 - Check if /etc/hosts.deny configuration file exists
      - 2.3.5 # Ensure LDAP client is not installed
      - 5.4.2 # Ensure system accounts are non-login

the instance will not survive a reboot anymore

Screenshot_2020-09-25 Get instance screenshot EC2 Management Console

chandanchowdhury commented 3 years ago

Hi @markuman , this is duplicate of #53 and unfortunately we have not yet been able to pin-point the task that is causing this issue.