1 heat_template_version: ocata
4 AuditD configured with Puppet
9 description: Mapping of service_name -> network name. Typically set
10 via parameter_defaults in the resource registry. This
11 mapping overrides those in ServiceNetMapDefaults.
18 description: Mapping of service endpoint -> protocol. Typically set
19 via parameter_defaults in the resource registry.
22 description: Mapping of auditd rules
28 description: Role data for the auditd service
32 auditd::rules: {get_param: AuditdRules}
34 include ::tripleo::profile::base::auditd
36 - name: Check if auditd is deployed
37 command: systemctl is-enabled auditd
38 tags: step0,validation
40 register: auditd_enabled
41 - name: "PreUpgrade step0,validation: Check if auditd is running"
43 /usr/bin/systemctl show 'auditd' --property ActiveState |
45 when: auditd_enabled.rc == 0
46 tags: step0,validation
47 - name: Stop auditd service
49 service: name=auditd state=stopped