Produced by Araxis Merge on 5/14/2018 1:18:38 PM Eastern Daylight Time. See www.araxis.com for information about Merge. This report uses XHTML and CSS2, and is best viewed with a modern standards-compliant browser. For optimum results when printing this report, use landscape orientation and enable printing of background images and colours in your browser.
| # | Location | File | Last Modified |
|---|---|---|---|
| 1 | MCCF_EDI_TAS_Infrastructure.zip\MCCF_EDI_TAS_Infrastructure\mag_sys_build\playbooks | install_v2s.yml | Tue Mar 27 23:51:06 2018 UTC |
| 2 | MCCF_EDI_TAS_Infrastructure.zip\MCCF_EDI_TAS_Infrastructure\mag_sys_build\playbooks | install_v2s.yml | Thu May 10 16:27:31 2018 UTC |
| Description | Between Files 1 and 2 |
|
|---|---|---|
| Text Blocks | Lines | |
| Unchanged | 4 | 300 |
| Changed | 3 | 6 |
| Inserted | 0 | 0 |
| Removed | 0 | 0 |
| Whitespace | |
|---|---|
| Character case | Differences in character case are significant |
| Line endings | Differences in line endings (CR and LF characters) are ignored |
| CR/LF characters | Not shown in the comparison detail |
No regular expressions were active.
| 1 | # Ansible Playbook | |
| 2 | # # Erik v an Oudheus den PII - 28 Sep 2 017 | |
| 3 | # # | |
| 4 | # # Instal l VA CRISP Packages | |
| 5 | --- | |
| 6 | - name: In stall V2S packages | |
| 7 | hosts: a ll | |
| 8 | become: yes | |
| 9 | ||
| 10 | tasks: | |
| 11 | - name: Copy rpm k eys for Bi gFix and E ncase | |
| 12 | get_ur l: | |
| 13 | url: http: // DNS . URL pub/RPM-GP G-KEY-HSED | |
| 14 | dest : /tmp/ans ible/RPM-G PG-KEY-HSE D | |
| 15 | owne r: root | |
| 16 | grou p: root | |
| 17 | mode : 0750 | |
| 18 | ||
| 19 | - name: Install rp ms keys fo r BigFix a nd Encase | |
| 20 | rpm_ke y: | |
| 21 | stat e: present | |
| 22 | key: /tmp/ansi ble/RPM-GP G-KEY-HSED | |
| 23 | ||
| 24 | - name: install Bi gFix encas e and othe r pkgs for Centrify | |
| 25 | yum: p kg={{ item }} state= latest | |
| 26 | with_i tems: | |
| 27 | - BESAgent | |
| 28 | - encase | |
| 29 | - net-snmp | |
| 30 | - oddjob | |
| 31 | - oddjob-mkh omedir | |
| 32 | - fprintd | |
| 33 | - fprintd-pa m | |
| 34 | ||
| 35 | - name: Copy rpm k eys for Ce ntrify | |
| 36 | get_ur l: | |
| 37 | url: http: // DNS . URL /pub/RPM-G PG-KEY-cen trify | |
| 38 | dest : /tmp/ans ible/RPM-G PG-KEY-cen trify | |
| 39 | owne r: root | |
| 40 | grou p: root | |
| 41 | mode : 0750 | |
| 42 | ||
| 43 | - name: Install rp m keys for Centrify | |
| 44 | rpm_ke y: | |
| 45 | stat e: present | |
| 46 | key: /tmp/ansi ble/RPM-GP G-KEY-cent rify | |
| 47 | ||
| 48 | - name: Install Ce ntrify Pac kages | |
| 49 | yum: p kg={{ item }} state= latest | |
| 50 | with_i tems: | |
| 51 | - dr acut-fips | |
| 52 | - hm accalc | |
| 53 | - Ce ntrifyDC | |
| 54 | - Ce ntrifyDC-c url | |
| 55 | - Ce ntrifyDC-o penssh | |
| 56 | - Ce ntrifyDC-o penssl | |
| 57 | ||
| 58 | - name: Install VA Banner | |
| 59 | file: | |
| 60 | path : /etc/iss ue | |
| 61 | stat e: absent | |
| 62 | ||
| 63 | - name: Create VA approved B anner | |
| 64 | blocki nfile: | |
| 65 | path : /etc/iss ue | |
| 66 | crea te: yes | |
| 67 | back up: yes | |
| 68 | mark er: " " | |
| 69 | owne r: root | |
| 70 | grou p: root | |
| 71 | mode : 0644 | |
| 72 | cont ent: | | |
| 73 | Th is U.S. Government system is intended for offici al and au thorized use | |
| 74 | on ly by au thorized u sers with no reasona ble expect ation of privacy. The | |
| 75 | sy stem may include re cords prot ected by v arious Fed eral statu tes includ ing | |
| 76 | th e Privacy Act (5 U.S .C. 552a) and 38 U.S .C. 5701 a nd 7332. A ccess to d ata | |
| 77 | is on a ne ed-to-know basis onl y. All use of this s ystem cons titutes u ser | |
| 78 | un derstandin g of uncon ditional c onsent to review and action in cluding ( but | |
| 79 | no t limited to) moni toring, r ecording, copying, auditing, inspecti ng, | |
| 80 | in vestigatin g, restri cting ac cess, blo cking, tr acking, d isclosing to | |
| 81 | au thorized p ersonnel, or any ot her author ized actio ns by all authorized VA | |
| 82 | an d law enf orcement personnel. Unauthor ized acce ss to or m isuse of t his | |
| 83 | sy stem is strictly prohibi ted may result in criminal , civil, or | |
| 84 | ad ministrati ve penalti es. | |
| 85 | ||
| 86 | - name: Remove any existing issue.net | |
| 87 | file: | |
| 88 | path : /etc/iss ue.net | |
| 89 | stat e: absent | |
| 90 | ||
| 91 | - name: create sym link to i ssue banne r | |
| 92 | file: | |
| 93 | src: /etc/issu e | |
| 94 | dest : /etc/iss ue.net | |
| 95 | owne r: root | |
| 96 | grou p: root | |
| 97 | stat e: link | |
| 98 | ||
| 99 | - name: Import ssh d_config f ile | |
| 100 | templa te: | |
| 101 | src: ../files/ sshd_confi g.j2 | |
| 102 | dest : /etc/cen trifydc/ss h/sshd_con fig | |
| 103 | owne r: root | |
| 104 | grou p: root | |
| 105 | mode : 0600 | |
| 106 | back up: yes | |
| 107 | ||
| 108 | - name: Import ssh _config fi le | |
| 109 | templa te: | |
| 110 | src: ../files/ ssh_config .j2 | |
| 111 | dest : /etc/cen trifydc/ss h/ssh_conf ig | |
| 112 | owne r: root | |
| 113 | grou p: root | |
| 114 | mode : 0600 | |
| 115 | back up: yes | |
| 116 | ||
| 117 | - name: Import PAM sshd file | |
| 118 | templa te: | |
| 119 | src: ../files/ pam_sshd.j 2 | |
| 120 | dest : /etc/pam .d/sshd | |
| 121 | owne r: root | |
| 122 | grou p: root | |
| 123 | mode : 0644 | |
| 124 | back up: yes | |
| 125 | ||
| 126 | - name: Import PAM system-au th file | |
| 127 | templa te: | |
| 128 | src: ../files/ pam_system _auth.j2 | |
| 129 | dest : /etc/pam .d/system- auth | |
| 130 | owne r: root | |
| 131 | grou p: root | |
| 132 | mode : 0644 | |
| 133 | back up: yes | |
| 134 | ||
| 135 | # - name: Start up Centrify D C | |
| 136 | # syste md: | |
| 137 | # nam e: centrif ydc | |
| 138 | # ena bled: yes | |
| 139 | # sta te: stoppe d | |
| 140 | # ign ore_errors : yes | |
| 141 | ||
| 142 | - name: Turn Off O penSSH | |
| 143 | system d: | |
| 144 | name : sshd | |
| 145 | enab led: no | |
| 146 | stat e: stopped | |
| 147 | ||
| 148 | - name: Turn On Ce ntrify-SSH | |
| 149 | system d: | |
| 150 | name : centrify -sshd | |
| 151 | enab led: yes | |
| 152 | stat e: started | |
| 153 |
Araxis Merge (but not the data content of this report) is Copyright © 1993-2016 Araxis Ltd (www.araxis.com). All rights reserved.