-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathvSphereSCG.yml
More file actions
70 lines (66 loc) · 2.1 KB
/
Copy pathvSphereSCG.yml
File metadata and controls
70 lines (66 loc) · 2.1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
- name: Execute Ansible based toolkit to apply the vSphere Security Configuration Guide
hosts: localhost
gather_facts: false
vars:
vcenter_hostname: 'vcenter.lab.local'
vcenter_username: 'Administrator@vsphere.local'
vcenter_password: 'C0mpl3x!'
cluster_name: 'lab'
esxi_scg_ntp: true
ntp1: '192.168.2.100'
ntp2: '192.168.2.101'
ntp3: '192.168.2.102'
ntp4: '192.168.2.103'
esxi_scg_logspersistent: true
syslog_global_directory: '[] /scratch/log'
esxi_scg_lockdown: true
esxi_scg_logslevel: true
esxi_scg_ssh: true
esxi_scg_accountlockfailures: true
esxi_scg_accountunlocktime: true
esxi_scg_passwordhistory: true
esxi_scg_passwrodpolicies: true
esxi_scg_dcuitimeout: true
esxi_scg_networkbpdu: true
esxi_scg_disableslp: true
esxi_scg_shelldisable: true
esxi_scg_shellinteractivetimeout: true
esxi_scg_shelltimeout: true
esxi_scg_shellwarning: true
esxi_scg_tlsprotocols: true
esxi_scg_transparentpagesharing: true
esxi_scg_vibtrustedbinaries: true
vm_scg_disable_copy: true
vm_scg_disable_paste: true
vm_scg_disable_disk_shrink: true
vm_scg_disable_disk_wiper: true
vm_scg_disable_3d: true
vm_scg_limit_vmrc: true
vm_scg_limit_setinfo: true
vm_scg_log_retention: true
vm_scg_log_rotation: true
vm_scg_restrict_host_info: true
vm_scg_vmrc_lock: true
vcenter_scg_vami_ntp: true
vc_ntp1: '0.pool.ntp.org'
vc_ntp2: '1.pool.ntp.org'
vc_ntp3: '2.pool.ntp.org'
vc_ntp4: '3.pool.ntp.org'
vcenter_scg_vami_syslog: true
vc_syslog_hostname: 'syslog.lab.local'
vc_syslog_port: '514'
vc_syslog_protocol: 'UDP'
vcenter_scg_vami_ssh: true
vcenter_scg_vami_dcui: true
collections:
- daftpyposh.vspherescg
tasks:
- name: import vCenter role from a collection
import_role:
name: daftpyposh.vspherescg.vcenter_scg
- name: import ESXi role from a collection
import_role:
name: daftpyposh.vspherescg.esxi_scg
- name: import VM role from a collection
import_role:
name: daftpyposh.vspherescg.vm_scg