Implementación de hardening mediante la herramienta de DevOps Ansible : implementación de hardening, mediante Ansible en un sistema operativo de servidor Microsoft.

Abstract

The present work consists of the process of implementing hardening on a Microsoft server, executed through the Ansible tool. The first section contains the description of the project, the general objective, the specific objectives, and the theoretical framework that includes an explanation of each element used. The second section includes the methodology, which is a summary of what was developed. The third section has the installation of a vulnerability scanning tool, which allows to have a report of the status of the operating system. Then it has the installation of the Ansible tool on the controller node and the verification in the version that is installed. The connection between the machines, Winrm and Ansible, executes the ping-pong command. In this section, playbooks are also performed and executed for the correction of operating system vulnerabilities. A second vulnerability report is executed after applying the security policies. In the last section, a comparison is made of the vulnerabilities that were corrected with those of the first report. The fourth section contains the conclusions of the topic, with extra learning to the content that is already available. The recommendations help to avoid any mistakes that may occur when implementing hardening using Ansible for a Microsoft server. The last part embodies the corresponding annexes of the project.