Merge pull request #9 from ansible-lockdown/devel

Updated role for STIG Version 2 release 1
Signed-off-by: George Nalen <[email protected]>

README.md

@@ -3,7 +3,7 @@ Windows Server 2019 DISA STIG
 
 Configure a Windows Server 2019 system to be DISA STIG compliant. All findings will be audited by default. Non-disruptive CAT I, CAT II, and CAT III findings will be corrected by default. ~Disruptive finding remediation can be enabled by setting `rhel7stig_disruption_high` to `yes`.~ _To be implemented_
 
-This role is based on Windows Server 2019 DISA STIG: [Version 1, Rel 9 released on July 26, 2019](Need URL HEre).
+This role is based on Windows Server 2019 DISA STIG: [Version 2, Rel 1 released on November 13, 2020](Need URL HEre).
 
 Requirements
 ------------

defaults/main.yml

@@ -1,7 +1,7 @@
 ---
-win2019stig_cat1_patch: yes
-win2019stig_cat2_patch: yes
-win2019stig_cat3_patch: yes
+win2019stig_cat1_patch: true
+win2019stig_cat2_patch: true
+win2019stig_cat3_patch: true
 
 win2019stig_min_ansible_version: "2.6"
 
@@ -43,14 +43,19 @@ long_running: false
 # PLEASE NOTE: These work in coordination with the cat1, cat2, cat3 group variables. You must enable an entire group
 # in order for the variables below to take effect.
 # CAT 1 rules
+
 wn19_00_000010: true
 wn19_00_000030: true
 wn19_00_000100: true
 wn19_00_000110: true
 wn19_00_000130: true
+wn19_ac_000090: true
 wn19_cc_000210: true
 wn19_cc_000220: true
 wn19_cc_000230: true
+wn19_cc_000430: true
+wn19_cc_000470: true
+wn19_cc_000500: true
 wn19_dc_000010: true
 wn19_dc_000070: true
 wn19_dc_000080: true
@@ -62,12 +67,15 @@ wn19_dc_000290: true
 wn19_dc_000300: true
 wn19_ms_000010: true
 wn19_ms_000140: true
+wn19_so_000020: true
+wn19_so_000210: true
+wn19_so_000220: true
 wn19_so_000230: true
-wn19_so_000240: true
 wn19_so_000250: true
 wn19_so_000300: true
 wn19_so_000310: true
 wn19_ur_000020: true
+wn19_ur_000060: true
 wn19_ur_000100: true
 
 # CAT 2 rules
@@ -117,7 +125,6 @@ wn19_ac_000050: true
 wn19_ac_000060: true
 wn19_ac_000070: true
 wn19_ac_000080: true
-wn19_ac_000090: true
 wn19_au_000010: true
 wn19_au_000020: true
 wn19_au_000030: true
@@ -173,7 +180,6 @@ wn19_cc_000180: true
 wn19_cc_000190: true
 wn19_cc_000240: true
 wn19_cc_000250: true
-wn19_cc_000260: true
 wn19_cc_000270: true
 wn19_cc_000280: true
 wn19_cc_000290: true
@@ -189,14 +195,12 @@ wn19_cc_000390: true
 wn19_cc_000400: true
 wn19_cc_000410: true
 wn19_cc_000420: true
-wn19_cc_000430: true
 wn19_cc_000440: true
 wn19_cc_000450: true
+wn19_cc_000451: true
 wn19_cc_000460: true
-wn19_cc_000470: true
 wn19_cc_000480: true
 wn19_cc_000490: true
-wn19_cc_000500: true
 wn19_cc_000510: true
 wn19_cc_000520: true
 wn19_dc_000020: true
@@ -277,7 +281,6 @@ wn19_PK_000010: true
 wn19_pk_000020: true
 wn19_pk_000030: true
 wn19_so_000010: true
-wn19_so_000020: true
 wn19_so_000030: true
 wn19_so_000040: true
 wn19_so_000050: true
@@ -295,8 +298,7 @@ wn19_so_000170: true
 wn19_so_000180: true
 wn19_so_000190: true
 wn19_so_000200: true
-wn19_so_000210: true
-wn19_so_000220: true
+wn19_so_000240: true
 wn19_so_000260: true
 wn19_so_000270: true
 wn19_so_000280: true
@@ -319,7 +321,7 @@ wn19_ur_000010: true
 wn19_ur_000030: true
 wn19_ur_000040: true
 wn19_ur_000050: true
-wn19_ur_000060: true
+wn19_ur_000070: true
 wn19_ur_000080: true
 wn19_ur_000090: true
 wn19_ur_000110: true
@@ -345,6 +347,7 @@ wn19_cc_000040: true
 wn19_cc_000050: true
 wn19_cc_000060: true
 wn19_cc_000200: true
+wn19_cc_000260: true
 wn19_cc_000320: true
 wn19_dc_000160: true
 wn19_so_000140: true