Skip to content

Commit

Permalink
Merge pull request #163 from cyberark/ansiblerolesfor14.0
Browse files Browse the repository at this point in the history
Upload ansible roles ver14.0
  • Loading branch information
ekiemiesz authored Jul 2, 2024
2 parents ed6a931 + 0b357d4 commit 03c20b5
Show file tree
Hide file tree
Showing 24 changed files with 1,988 additions and 243 deletions.
63 changes: 0 additions & 63 deletions Jenkinsfile

This file was deleted.

3 changes: 2 additions & 1 deletion README.md
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@ pvwa_install | no | false
pvwa_hardening | no | false | Apply PVWA hardening
pvwa_registration | no | false | Connect PVWA to the Vault
pvwa_clean | no | false | N/A
platform | no | aws | Deployed platform (aws/azure)

### Deployment Variables
Variable | Required | Default | Comments
Expand Down Expand Up @@ -76,7 +77,7 @@ to call the PVWA role with several parameters:

```
---
- include_role:
- ansible.builtin.include_role:
name: pvwa
vars:
pvwa_install: true
Expand Down
6 changes: 4 additions & 2 deletions defaults/main.yml
Original file line number Diff line number Diff line change
Expand Up @@ -9,18 +9,19 @@ pvwa_registration_configure_vault: false
pvwa_registration_register_instance: false
pvwa_clean: false
pvwa_extract: false
pvwa_ignore_checksum: false
pvwa_exists: false
pvwa_hardened: false
pvwa_registered: false
pvwa_official: true
platform: "aws"

pvwa_base_bin_drive: "C:"
pvwa_zip_file_path: ""
pvwa_extract_folder: "{{ pvwa_base_bin_drive }}\\Cyberark\\packages"
pvwa_artifact_name: "pvwa.zip"
pvwa_component_folder: "Password Vault Web Access"
pvwa_installationautomation_folder: "{{ pvwa_extract_folder }}\\{{ pvwa_component_folder }}\\InstallationAutomation"
pvwa_iis_disable_logs: "{{ pvwa_installationautomation_folder }}\\HardeningFix\\PVWA_IIS_Disable_logs.psm1"

pvwa_installation_drive: "C:"
pvwa_installation_path: "{{ pvwa_installation_drive }}\\CyberArk\\Password Vault Web Access"
Expand All @@ -39,9 +40,10 @@ pvwa_enable_mobile_version: true
pvwa_prerequisites_log: "{{ pvwa_installationautomation_folder }}\\pvwa_pre_req_result.txt"
pvwa_install_log: "{{ pvwa_installationautomation_folder }}\\pvwa_installation_result.txt"
pvwa_hardening_log: "{{ pvwa_installationautomation_folder }}\\pvwa_hardening_result.txt"
pvwa_registration_log: "{{ pvwa_installationautomation_folder }}\\pvwa_registration_result.txt"
pvwa_registration_log: "{{ pvwa_installationautomation_folder }}\\pvwa_registration_result.txt"

accept_eula: "No"

vault_username: "administrator"
vault_port: 1858
log_path_dest: "{{ playbook_dir | dirname }}/logs/pvwa"
108 changes: 108 additions & 0 deletions files/aws/AWS.EC2.Windows.CloudWatch.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,108 @@
{
"IsEnabled":false,
"EngineConfiguration":{
"PollInterval":"00:00:05",
"Components":[
{
"Id":"CfnInitLog",
"FullName":"AWS.EC2.Windows.CloudWatch.CustomLog.CustomLogInputComponent,AWS.EC2.Windows.CloudWatch",
"Parameters":{
"LogDirectoryPath":"C:\\cfn\\log",
"TimestampFormat":"yyyy-MM-dd HH:mm:ss,fff",
"Encoding":"ASCII",
"Filter":"cfn-init.log",
"CultureName":"en-US",
"TimeZoneKind":"Local"
}
},
{
"Id":"CloudWatchCfnInitLog",
"FullName":"AWS.EC2.Windows.CloudWatch.CloudWatchLogsOutput,AWS.EC2.Windows.CloudWatch",
"Parameters":{
"AccessKey":"",
"SecretKey":"",
"Region":"AWS_REGION_PH",
"LogGroup":"LOG_GROUP_PH",
"LogStream":"PVWA_CFN_LOG_PH"
}
},
{
"Id":"Set-LocalService",
"FullName":"AWS.EC2.Windows.CloudWatch.CustomLog.CustomLogInputComponent,AWS.EC2.Windows.CloudWatch",
"Parameters":{
"LogDirectoryPath":"C:\\CyberArk\\Deployment\\Logs",
"TimestampFormat":"yyyy-MM-dd HH:mm:ss",
"Encoding":"ASCII",
"Filter":"Set-LocalService.log",
"CultureName":"en-US",
"TimeZoneKind":"Local"
}
},
{
"Id":"CloudWatchSet-LocalService",
"FullName":"AWS.EC2.Windows.CloudWatch.CloudWatchLogsOutput,AWS.EC2.Windows.CloudWatch",
"Parameters":{
"AccessKey":"",
"SecretKey":"",
"Region":"AWS_REGION_PH",
"LogGroup":"LOG_GROUP_PH",
"LogStream":"PVWA_LOCALSERVICE_LOG_PH"
}
},
{
"Id":"PVWAConfiguration",
"FullName":"AWS.EC2.Windows.CloudWatch.CustomLog.CustomLogInputComponent,AWS.EC2.Windows.CloudWatch",
"Parameters":{
"LogDirectoryPath":"C:\\CyberArk\\Deployment\\Logs",
"TimestampFormat":"yyyy-MM-dd HH:mm:ss",
"Encoding":"ASCII",
"Filter":"PVWAConfiguration.log",
"CultureName":"en-US",
"TimeZoneKind":"Local"
}
},
{
"Id":"CloudWatchPVWAConfiguration",
"FullName":"AWS.EC2.Windows.CloudWatch.CloudWatchLogsOutput,AWS.EC2.Windows.CloudWatch",
"Parameters":{
"AccessKey":"",
"SecretKey":"",
"Region":"AWS_REGION_PH",
"LogGroup":"LOG_GROUP_PH",
"LogStream":"PVWA_CONF_LOG_PH"
}
},
{
"Id":"PVWARegistration",
"FullName":"AWS.EC2.Windows.CloudWatch.CustomLog.CustomLogInputComponent,AWS.EC2.Windows.CloudWatch",
"Parameters":{
"LogDirectoryPath":"C:\\CyberArk\\Deployment\\Logs",
"TimestampFormat":"yyyy-MM-dd HH:mm:ss",
"Encoding":"ASCII",
"Filter":"PVWARegistration.log",
"CultureName":"en-US",
"TimeZoneKind":"Local"
}
},
{
"Id":"CloudWatchPVWARegistration",
"FullName":"AWS.EC2.Windows.CloudWatch.CloudWatchLogsOutput,AWS.EC2.Windows.CloudWatch",
"Parameters":{
"AccessKey":"",
"SecretKey":"",
"Region":"AWS_REGION_PH",
"LogGroup":"LOG_GROUP_PH",
"LogStream":"PVWAREGISTRATION_LOG_PH"
}
}
],
"Flows":{
"Flows":[
"CfnInitLog,CloudWatchCfnInitLog",
"Set-LocalService,CloudWatchSet-LocalService",
"PVWAConfiguration,CloudWatchPVWAConfiguration",
"PVWARegistration,CloudWatchPVWARegistration"
]
}
}
}
Loading

0 comments on commit 03c20b5

Please sign in to comment.