---id: V-72127 status: implemented tag: auditd ---
Rules are added to audit all openat syscalls on the system.
openat
Deployers can opt out of this change by setting an Ansible variable:
security_rhel7_audit_openat: no
This rule is compatible with x86, x86_64, and ppc64 architectures.