REFERENCE.md

Reference

Table of Contents

Classes

Public Classes

• crypto_policies: Manage system-wide crypto policies
• crypto_policies::config: Manage the crypto-policies configuration

Private Classes

• crypto_policies::install: Manage crypto-policies installation

Data types

• Crypto_policies::Policy

Classes

crypto_policies

This class manages the system-wide crypto policies on the Red Hat operating system family. This will configure policies for which cryptographic algorithms to use in various parts of the operating system. See man:crypto-policies(7) for more information.

Examples

default

include crypto_policies

with a policy module

class { 'crypto_policies':
  policy => 'DEFAULT:NO-SHA1',
}

Parameters

The following parameters are available in the crypto_policies class:

• policy
• config_file
• packages

policy

Data type: Crypto_policies::Policy

Which system crypto policy to use

Default value: 'DEFAULT'

config_file

Data type: Stdlib::Absolutepath

Which configuration file to manage

Default value: '/etc/crypto-policies/config'

packages

Data type: Array[String]

Packages required for crypto-policies

Default value: ['crypto-policies']

crypto_policies::config

Manage /etc/crypto-policies/config, and run update-crypto-policies if it changes

Examples

include crypto_policies::config

Parameters

The following parameters are available in the crypto_policies::config class:

• config_file
• policy

config_file

Data type: Stdlib::Absolutepath

Default value: '/etc/crypto-policies/config'

policy

Data type: Crypto_policies::Policy

Default value: 'DEFAULT'

Data types

Crypto_policies::Policy

The Crypto_policies::Policy data type.

Alias of

Pattern[/(?x:
  \A
  [A-Z0-9_-]+     # Policy name
  (:[A-Z0-9_-]+)* # Zero or more policy modules, colon separated
  \z
  )/]