Ansible job auditd failed in Database Server and Server when run Frappe Press in Docker, ECS and K8s

ToanPham · December 4, 2025, 6:17am

Hi everyone, currently I’m hosting Frappe Press in 3 environments Docker, ECS, and K8s
using images frappe/bench:v5.27.0 and ubuntu:22.04

The issue comes from Setup Server in both “Server” and “Database Server”

When running Ansible files in audit, it throws an error it step “systemctl restart auditd”

Error “Job for auditd.service failed because the control process exited with error code.
See “systemctl status auditd.service” and “journalctl -xeu auditd.service” for details.”

After I go through for more details, I recognise that auditd.service cannot run inside Kubernetes pods, ECS containers, or Docker containers because
Ansible tasks require deep Host/OS access

Many tasks in Ansible require:

systemd service management
kernel-level configurations
OS-level file system modification

github.com/frappe/press

press/playbooks/roles/auditd/tasks/main.yml

develop

---
- name: Ensure auditd is installed
  package:
      name: auditd
      state: present
  notify: restart auditd

- name: "Ensure auditd service is enabled and running"
  service:
    name: auditd
    state: started
    enabled: yes

- name: "Ensure audit log storage size is configured"
  lineinfile:
    dest: /etc/audit/auditd.conf
    regexp: "^max_log_file( |=)"
    line: "max_log_file = 10"
    state: present
  notify: restart auditd

This file has been truncated. show original

Could you please give me some solutions that I could run Ansible tasks auditd in Docker, ECS or K8S

asieftejani · December 5, 2025, 6:06am