Task Generator
Overview
Task Generator uses AI (YandexGPT, Azure OpenAI, or OpenAI) to automatically create Ansible tasks from CIS Benchmark rule descriptions. This accelerates the development of custom hardening playbooks.
How to Use
- Navigate to AI > Task Generator
- Enter a CIS rule description or rule ID
- Select the target OS family
- Select the workload type
- Click Generate
The AI produces a ready-to-use Ansible YAML task.
Workload Types
| Workload | Description |
|---|---|
| general | Default server configuration |
| web_server | Web server (Nginx, Apache) |
| database | Database server (PostgreSQL, MySQL) |
| application | Application server |
| container_host | Docker/container host |
| bastion | Bastion/jump host |
| ci_cd | CI/CD pipeline server |
| monitoring | Monitoring server |
Workload type influences the AI recommendations - for example, a database server may need different firewall rules than a web server.
Generated Output
The output is an Ansible YAML task that you can:
- Copy to clipboard
- Download as a .yml file
- Integrate into your existing Ansible playbooks
Profile Recommendation
The Task Generator also includes a Profile Recommendation feature:
- Describe your server workload
- The AI suggests the most appropriate CIS profile (Level 1 or Level 2)
- Provides reasoning for the recommendation
Requirements
- An active LLM configuration (Settings > LLM)
- Supported providers: YandexGPT, Azure OpenAI, OpenAI
See Also
- CIS rule coverage analysis - evaluate how well your Ansible roles cover CIS Benchmark rules using AI
- CIS Benchmark security hardening - apply generated tasks as part of a full CIS hardening profile
- Automated CIS remediation workflow - generate and approve fix scripts for specific failed rules
Last updated on