win_audit_policy_system module not changing the value
44 views
Skip to first unread message
srini mas
Jan 29, 2021, 5:19:24 AM1/29/21
to Ansible Project
Hi,
Trying to use ansible on windows server 2016. winRM connection works and other modules run perfectly fine.
simple playbook and run win_audit_policy_system to change the values.
- name: "Ensure 'Audit Application Group Management' is set to 'Success and Failure'"
win_audit_policy_system:
subcategory: Application Group Management
audit_type: success, failure
- name: "Ensure 'Audit Computer Account Management' is set to 'Success and Failure'"
win_audit_policy_system:
subcategory: Computer Account Management
audit_type: success, failure
- name: "Ensure 'Audit Application Group Management' is set to 'Success and Failure'"
win_audit_policy_system:
subcategory: Application Group Management
audit_type: success, failure
- name: "Ensure 'Audit Computer Account Management' is set to 'Success and Failure'"
win_audit_policy_system:
subcategory: Computer Account Management
audit_type: success, failure
When I go to check on the Machine, the state of the policy does not change. I already restarted the machine and run the gpupdate /force. Any ideas?
srini mas
Jan 29, 2021, 11:16:43 PM1/29/21
to ansible...@googlegroups.com
Hello,
Hope anyone could help me!
--
You received this message because you are subscribed to the Google Groups "Ansible Project" group.
To unsubscribe from this group and stop receiving emails from it, send an email to ansible-proje...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/33319eb2-62d7-4572-a95b-678d09bb939cn%40googlegroups.com.
Dick Visser
Jan 30, 2021, 2:21:01 AM1/30/21
to ansible...@googlegroups.com
Try running with more verbosity?
To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAJUBATA0bCj-a-rJNPJ4%2BgXHdQms39%2B0oXa5%2BRfoJO8udxXVLQ%40mail.gmail.com.
Sent from a mobile device - please excuse the brevity, spelling and punctuation.
srini mas
Jan 30, 2021, 3:04:51 AM1/30/21
to ansible...@googlegroups.com
Hello Visser,
The values were changed in CLI but not changed in GUI.
There is one interesting things.The value was changed both GUI and CLI If I run with category options.
- name: "Audit account management"
win_audit_policy_system:
category: Account management
audit_type: success, failure
- name: "Audit directory service access"
win_audit_policy_system:
category: DS Access
audit_type: success, failure
win_audit_policy_system:
category: Account management
audit_type: success, failure
- name: "Audit directory service access"
win_audit_policy_system:
category: DS Access
audit_type: success, failure
If I run with subcategory options,the value was not changed in GUI.
- name: "17.2.1,CCE-38329-9 | Ensure 'Audit Application Group Management' is set to 'Success and Failure'"
win_audit_policy_system:
subcategory: Application Group Management
audit_type: success, failure
- name: "17.2.2,CCE-38004-8 | Ensure 'Audit Computer Account Management' is set to 'Success and Failure'"
win_audit_policy_system:
subcategory: Computer Account Management
audit_type: success, failure
To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAL8fbwNYU2O4B7u0e10R%3DTZHZnSxhpK9-kTWnMoP6yBW10hiFQ%40mail.gmail.com.
srini mas
Jan 31, 2021, 4:22:48 AM1/31/21
to ansible...@googlegroups.com
Hello !
Reply all
Reply to author
Forward
0 new messages