Only run harding if /var/log/audit exists

Signed-off-by: GitHub <noreply@github.com>

roles/os_hardening/tasks/minimize_access.yml

@@ -208,6 +208,11 @@
     group: 'root'
     mode: '{{ os_mnt_var_log_dir_mode }}'
 
+- name: Check if /var/log/audit exists
+  stat:
+    path: /var/log/audit
+  register: var_log_audit_exists
+
 - name: Mount /var/log/audit with hardened options
   mount:
     path: /var/log/audit
@@ -224,6 +229,7 @@
     owner: 'root'
     group: 'root'
     mode: '{{ os_mnt_var_log_audit_dir_mode }}'
+  when: var_log_audit_exists.stat.exists | bool
 
 - name: Mount /var/tmp with hardened options
   mount: