You're reading from Ansible for Real-Life Automation A complete Ansible handbook filled with practical IT automation use cases

Product type Paperback

Published in Sep 2022

Publisher Packt

ISBN-13 9781803235417

Length 480 pages

Edition 1st Edition

Tools

Ansible

Concepts

DevOps

Author (1):

Gineesh Madapparambath

View More author details

Table of Contents (22) Chapters

Preface

1. Part 1: Using Ansible as Your Automation Tool

2. Chapter 1: Ansible Automation – Introduction FREE CHAPTER

3. Chapter 2: Starting with Simple Automation

4. Chapter 3: Automating Your Daily Jobs

5. Chapter 4: Exploring Collaboration in Automation Development

6. Part 2: Finding Use Cases and Integrations

7. Chapter 5: Expanding Your Automation Landscape

8. Chapter 6: Automating Microsoft Windows and Network Devices

9. Chapter 7: Managing Your Virtualization and Cloud Platforms

10. Chapter 8: Helping the Database Team with Automation

11. Chapter 9: Implementing Automation in a DevOps Workflow

12. Chapter 10: Managing Containers Using Ansible

13. Chapter 11: Managing Kubernetes Using Ansible

14. Chapter 12: Integrating Ansible with Your Tools

15. Chapter 13: Using Ansible for Secret Management

16. Part 3: Managing Your Automation Development Flow with Best Practices

17. Chapter 14: Keeping Automation Simple and Efficient

18. Chapter 15: Automating Non-Standard Platforms and Operations

19. Chapter 16: Ansible Automation Best Practices for Production

20. Index

Why subscribe?

21. Other Books You May Enjoy

Ansible for security automation

Security hardening is the practice of securing the hosts, networking devices, and applications by reducing the attack surface. There are multiple ways to implement security hardening, such as configuring the system appropriately, installing the latest version of the software (or firmware), or disabling unwanted configurations. Organizations use different security benchmarking methods and standards based on the requirements. Center for Internet Security (CIS) is one of the well-known organizations that provides the necessary enterprise standard benchmarks and CIS controls (https://www.cisecurity.org/about-us).

Log in and download the benchmark documents for operating systems or platforms for free, as shown in the following screenshot:

Figure 14.11 – CIS Benchmark download page for Kubernetes

It is not easy to configure the systems based on these benchmarks as hundreds of rules and configuration items must be executed...