openstack-ansible-security/doc/metadata/rhel6/V-38566.rst

377 B

---id: V-38566 status: opt-in tag: auditd ---

The audit rules for logging failed access attempts can generate significant amounts of log traffic in some environments. These rules are disabled by default.

To opt-in for this change and enable audit logging for these events, adjust the following Ansible variable:

security_auditd_failed_access: yes