1 heat_template_version: pike
4 AuditD configured with Puppet
9 description: Dictionary packing service data
13 description: Mapping of service_name -> network name. Typically set
14 via parameter_defaults in the resource registry. This
15 mapping overrides those in ServiceNetMapDefaults.
22 description: Role name on which the service is applied
26 description: Parameters specific to the role
30 description: Mapping of service endpoint -> protocol. Typically set
31 via parameter_defaults in the resource registry.
34 description: Mapping of auditd rules
40 description: Role data for the auditd service
44 auditd::rules: {get_param: AuditdRules}
46 include ::tripleo::profile::base::auditd
48 - name: Check if auditd is deployed
49 command: systemctl is-enabled auditd
52 register: auditd_enabled
53 - name: "PreUpgrade step0,validation: Check if auditd is running"
55 /usr/bin/systemctl show 'auditd' --property ActiveState |
57 when: auditd_enabled.rc == 0
58 tags: step0,validation
59 - name: Stop auditd service
61 when: auditd_enabled.rc == 0
62 service: name=auditd state=stopped