tlog

CI Testing

This role configures a system for Terminal session recording. The role will configure tlog to log recording data to the systemd journal.

Requirements

This role is only supported on RHEL8/CentOS8 and Fedora distributions.

Role Variables

Configure session recording with SSSD, the preferred way of managing recorded users or groups:

  • tlog_use_sssd (default: yes)

Configure SSSD recording scope - all / some / none:

  • tlog_scope_sssd (default: none)

YAML list of users to be recorded:

  • tlog_users_sssd (default: [])

YAML list of groups to be recorded:

  • tlog_groups_sssd (default: [])

YAML list of users to be excluded from recording (only applicable when scope=all):

  • tlog_exclude_users_sssd (default: [])

YAML list of groups to be excluded from recording (only applicable when scope=all):

  • tlog_exclude_groups_sssd (default: [])

Dependencies

This role has no dependencies currently.

Example Playbook

- name: Deploy session recording
  hosts: all
  roles:
    - rhel-system-roles.tlog
  vars:
    tlog_scope_sssd: some
    tlog_users_sssd:
      - recordeduser

Testing

Testing is done with the tests/tests*.yml playbooks.

License

GPL v3.0

Author Information

  • Nathan Kinder @nkinder

  • Kirill Glebov @sabbaka