Pull the VENOM Tanium hostname from SSM Parameter Store

jsf9k · jsf9k · commit 156e6a8a6118 · 2021-03-08T13:43:23.000-05:00
diff --git a/src/venom.yml b/src/venom.yml
@@ -1,6 +1,6 @@
 ---
 - hosts: all
-  name: Install Tanium client and configure UFW for VENOM
+  name: Configure for VENOM
   vars:
     ports:
       # Tanium
@@ -29,6 +29,7 @@
   roles:
     - role: venom_tanium_client
       vars:
+        server_name: "{{ lookup('aws_ssm', '/venom/tanium_hostname') }}"
         third_party_bucket_name: "{{ build_bucket }}"
     - role: venom_nessus_agent
       vars:
diff --git a/terraform-build-user/main.tf b/terraform-build-user/main.tf
@@ -9,7 +9,7 @@ module "iam_user" {
     aws.images-staging-ssm    = aws.images-staging-ssm
   }
 
-  ssm_parameters = ["/cyhy/dev/users", "/ssh/public_keys/*", "/openvpn/server/*"]
+  ssm_parameters = ["/cyhy/dev/users", "/openvpn/server/*", "/ssh/public_keys/*", "/venom/tanium_hostname"]
   user_name      = "build-openvpn-packer"
   tags = {
     Team        = "CISA - Development"

Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ module "iam_user" {`
`9`	`9`	`aws.images-staging-ssm = aws.images-staging-ssm`
`10`	`10`	`}`
`11`	`11`
`12`		`- ssm_parameters = ["/cyhy/dev/users", "/ssh/public_keys/", "/openvpn/server/"]`
	`12`	`+ ssm_parameters = ["/cyhy/dev/users", "/openvpn/server/", "/ssh/public_keys/", "/venom/tanium_hostname"]`
`13`	`13`	`user_name = "build-openvpn-packer"`
`14`	`14`	`tags = {`
`15`	`15`	`Team = "CISA - Development"`