From 48deb99971b03126d451ba6db29b6ba5d0e812f4 Mon Sep 17 00:00:00 2001 From: Martin Schurz Date: Sun, 22 Dec 2024 22:23:01 +0100 Subject: [PATCH] Use correct os_family for Suse ... Signed-off-by: Martin Schurz --- molecule/os_hardening/verify_tasks/ssh_auth_locked.yml | 4 ++-- roles/os_hardening/tasks/pam.yml | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/molecule/os_hardening/verify_tasks/ssh_auth_locked.yml b/molecule/os_hardening/verify_tasks/ssh_auth_locked.yml index 64e09af5..6b2bbea2 100644 --- a/molecule/os_hardening/verify_tasks/ssh_auth_locked.yml +++ b/molecule/os_hardening/verify_tasks/ssh_auth_locked.yml @@ -74,7 +74,7 @@ - "'WARNING: Your password has expired.' in output.stderr" - "'success' not in output.stdout" when: - - ansible_facts.os_family != "OpenSuse" + - ansible_facts.os_family != "Suse" - name: Assert check unsuccessful login ansible.builtin.assert: @@ -83,7 +83,7 @@ - output.stderr | length == 0 - output.stdout | length == 0 when: - - ansible_facts.os_family == "OpenSuse" + - ansible_facts.os_family == "Suse" - name: Check successful login with ssh key ansible.builtin.shell: diff --git a/roles/os_hardening/tasks/pam.yml b/roles/os_hardening/tasks/pam.yml index f4cbb042..5e8feead 100644 --- a/roles/os_hardening/tasks/pam.yml +++ b/roles/os_hardening/tasks/pam.yml @@ -43,7 +43,7 @@ regexp: "^(account.*pam_unix.so(?!.*no_pass_expiry).*)$" line: '\1 no_pass_expiry' when: - - ansible_facts.os_family == 'OpenSuse' + - ansible_facts.os_family == 'Suse' - name: NSA 2.3.3.5 Upgrade Password Hashing Algorithm to SHA-512 ansible.builtin.template: