Skip to content

Latest commit

 

History

History
13 lines (12 loc) · 580 Bytes

ansible-security.md

File metadata and controls

13 lines (12 loc) · 580 Bytes
Raw

Ansible Security Review Checklists

  1. Ansible control node:
    1. Where is your Ansible control node located?
    2. Who has access to it?
    3. How do you minimize the access to the Ansible control node to a limited number of users.
  2. Ansible Vault:
    1. Do you use Vault to encrypt sensitive data in Ansible playbooks?
    2. Where is the Ansible Vault password stored?
  3. Secrets:
    1. How secrets are stored?
    2. How often they are rotated?
  4. What network-level security solution is in place for safeguarding access to the Ansible control node (e.g., SSH, VPN)?