1 heat_template_version: ocata
4 AuditD configured with Puppet
9 description: Mapping of service_name -> network name. Typically set
10 via parameter_defaults in the resource registry. This
11 mapping overrides those in ServiceNetMapDefaults.
18 description: Role name on which the service is applied
22 description: Parameters specific to the role
26 description: Mapping of service endpoint -> protocol. Typically set
27 via parameter_defaults in the resource registry.
30 description: Mapping of auditd rules
36 description: Role data for the auditd service
40 auditd::rules: {get_param: AuditdRules}
42 include ::tripleo::profile::base::auditd
44 - name: Check if auditd is deployed
45 command: systemctl is-enabled auditd
48 register: auditd_enabled
49 - name: "PreUpgrade step0,validation: Check if auditd is running"
51 /usr/bin/systemctl show 'auditd' --property ActiveState |
53 when: auditd_enabled.rc == 0
54 tags: step0,validation
55 - name: Stop auditd service
57 when: auditd_enabled.rc == 0
58 service: name=auditd state=stopped