From a19615eaf3ad3c77f6a34fd6b7f008325d761fa4 Mon Sep 17 00:00:00 2001
From: willtome <willtome@gmail.com>
Date: Thu, 19 Jan 2023 10:17:45 -0500
Subject: [PATCH] Add Satellite Demos (#41)

* add satellite demos

* move satellite vars to setup.yml

* fix var

* fix playbook path

* remove async

* fix =

* fix condition

* fix lookup

* add credential

* update tools version

* fix scap role

* add satellite setup

* add satellite stuff

* remove local

* stupid

* stupid

* params

* these vars arent right

* these vars arent right

* add compliance workflow

* work on landing page

* work on landing page

* work on landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* add files

* derp

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add ee

* add ee

* add ee

* fix landing page

* fix landing page

* fix landing page

* fix landing page

* fix landing page

* remove commented out sections

* remove default ee

* set local admin password

* set ee for fact scan

* fall back to default ee for patching

* check for valid org_id

* check for valid org_id

* no gpg

* no gpg

* add satllite stuff

* update cred type

* update cred type

* raw

* raw

* work on landing page

* work on landing page

* work on landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* landing page

* add files

* derp

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add link

* add ee

* add ee

* add ee

* fix landing page

* fix landing page

* fix landing page

* fix landing page

* fix landing page

* remove commented out sections

* remove default ee

* set local admin password

* set ee for fact scan

* fall back to default ee for patching

* check for valid org_id

* check for valid org_id

* no gpg

* no gpg

* add satllite stuff

* update cred type

* update cred type

* raw

* raw

* raw

* merge satellite

* fix vars

* fix vars

* fix vars

* fix vars

* add publish

* add lifecycle and actviation keys

* workaround for publish issue

* use module to publish

* use module to publish

* use module to publish

* use module to publish

* change sat version

* change sat version

* change sat version

* remove maint repos

* launch sat setup

* reorder

* reorder

* moar inventory

* add manifest refresh

* add telemetry

* run linux setup

* parent efcf729fa09a4ea26c1680c727f615e8c0f21fb1
author willtome <willtome@gmail.com> 1663173584 -0400
committer willtome <willtome@gmail.com> 1668183942 -0500

parent efcf729fa09a4ea26c1680c727f615e8c0f21fb1
author willtome <willtome@gmail.com> 1663173584 -0400
committer willtome <willtome@gmail.com> 1668183785 -0500

parent efcf729fa09a4ea26c1680c727f615e8c0f21fb1
author willtome <willtome@gmail.com> 1663173584 -0400
committer willtome <willtome@gmail.com> 1668183318 -0500

parent efcf729fa09a4ea26c1680c727f615e8c0f21fb1
author willtome <willtome@gmail.com> 1663173584 -0400
committer willtome <willtome@gmail.com> 1668182787 -0500

parent efcf729fa09a4ea26c1680c727f615e8c0f21fb1
author willtome <willtome@gmail.com> 1663173584 -0400
committer willtome <willtome@gmail.com> 1668182651 -0500

add satellite demos

work on landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

add files

derp

add link

add link

add link

add link

add link

add link

add link

add link

add link

add link

add link

add link

add ee

add ee

add ee

fix landing page

fix landing page

fix landing page

fix landing page

fix landing page

remove commented out sections

remove default ee

set local admin password

set ee for fact scan

fall back to default ee for patching

check for valid org_id

check for valid org_id

no gpg

no gpg

add satllite stuff

update cred type

update cred type

raw

raw

raw

add satellite demos

move satellite vars to setup.yml

fix var

fix playbook path

remove async

fix =

fix condition

fix lookup

add credential

update tools version

fix scap role

add satellite setup

add satellite stuff

remove local

stupid

stupid

params

these vars arent right

these vars arent right

add compliance workflow

work on landing page

work on landing page

work on landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

landing page

add files

derp

add link

add link

add link

add link

add link

add link

add link

add link

add link

add link

add link

add link

add ee

add ee

add ee

fix landing page

fix landing page

fix landing page

fix landing page

fix landing page

remove commented out sections

remove default ee

set local admin password

set ee for fact scan

fall back to default ee for patching

check for valid org_id

check for valid org_id

no gpg

no gpg

update cred type

update cred type

raw

merge satellite

 fix vars

 fix vars

 fix vars

 fix vars

add publish

add lifecycle and actviation keys

workaround for publish issue

use module to publish

use module to publish

use module to publish

use module to publish

change sat version

change sat version

change sat version

remove maint repos

launch sat setup

reorder

reorder

moar inventory

add manifest refresh

add telemetry

run linux setup

* Updates to node1 (#42)

clean up satellite config
clean up server registration
add web console job

Co-authored-by: Calvin Smith <calvingsmith@users.noreply.github.com>

* add rhel 8 tailoring

* add ee

* dont verify certs

* Update setup.yml

* Update setup.yml

* what the heck

Co-authored-by: calvingsmith <4283930+calvingsmith@users.noreply.github.com>
Co-authored-by: Calvin Smith <calvingsmith@users.noreply.github.com>
---
 .../roles/report_server/files/css/new.css     |  202 +++
 .../files/redhat-ansible-logo.svg             |   48 +
 .../roles/report_server/files/report.png      |  Bin 0 -> 2098 bytes
 .../report_server/files/webpage_logo.png      |  Bin 0 -> 45921 bytes
 .../tasks/linux_landing_page.yml              |   34 +
 .../roles/report_server/tasks/main.yml        |    6 +
 .../tasks/windows_landing_page.yml            |   34 +
 .../roles/report_server/templates/header.j2   |   15 +
 .../report_server/templates/linux_report.j2   |   42 +
 .../report_server/templates/windows_report.j2 |   42 +
 .../roles/report_server/vars/Win32NT.yml      |    3 +
 .../roles/register_host/defaults/main.yml     |    4 +
 .../roles/register_host/tasks/main.yml        |   67 +
 .../roles/register_host/vars/RedHat7.yml      |    4 +
 .../roles/register_host/vars/RedHat8.yml      |    5 +
 .../satellite/roles/scap_client/Changelog.md  |   17 +
 .../demo/satellite/roles/scap_client/LICENSE  |   21 +
 .../satellite/roles/scap_client/README.md     |   45 +
 .../roles/scap_client/defaults/main.yaml      |   12 +
 .../satellite/roles/scap_client/meta/main.yml |    3 +
 .../roles/scap_client/tasks/main.yaml         |   85 +
 .../templates/openscap_client_config.yaml.j2  |   47 +
 collections/requirements.yml                  |    4 +-
 linux/ec2_register.yml                        |    9 +-
 linux/setup.yml                               |   71 +-
 satellite/README.md                           |   27 +
 satellite/files/ssg-rhel7-ds-tailoring.xml    |   61 +
 .../files/ssg-rhel8-ds-tailoring-stig-gui.xml | 1562 +++++++++++++++++
 .../satellite.example.com/activation_keys.yml |   22 +
 .../satellite.example.com/content_views.yml   |   29 +
 .../satellite.example.com/defaults.yml        |    3 +
 .../lifecycle_environments.yml                |   16 +
 satellite/satellite_promote.yml               |   17 +
 satellite/satellite_publish.yml               |   29 +
 satellite/server_openscap.yml                 |   16 +
 satellite/server_register.yml                 |    8 +
 satellite/setup.yml                           |  275 +++
 satellite/setup_satellite.yml                 |   54 +
 setup_demo.yml                                |    8 +-
 windows/create_ad_domain.yml                  |    1 -
 40 files changed, 2934 insertions(+), 14 deletions(-)
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/files/css/new.css
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/files/redhat-ansible-logo.svg
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/files/report.png
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/files/webpage_logo.png
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/tasks/linux_landing_page.yml
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/tasks/main.yml
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/tasks/windows_landing_page.yml
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/templates/header.j2
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/templates/linux_report.j2
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/templates/windows_report.j2
 create mode 100644 collections/ansible_collections/demo/reporting/roles/report_server/vars/Win32NT.yml
 create mode 100644 collections/ansible_collections/demo/satellite/roles/register_host/defaults/main.yml
 create mode 100644 collections/ansible_collections/demo/satellite/roles/register_host/tasks/main.yml
 create mode 100644 collections/ansible_collections/demo/satellite/roles/register_host/vars/RedHat7.yml
 create mode 100644 collections/ansible_collections/demo/satellite/roles/register_host/vars/RedHat8.yml
 create mode 100644 collections/ansible_collections/demo/satellite/roles/scap_client/Changelog.md
 create mode 100644 collections/ansible_collections/demo/satellite/roles/scap_client/LICENSE
 create mode 100644 collections/ansible_collections/demo/satellite/roles/scap_client/README.md
 create mode 100644 collections/ansible_collections/demo/satellite/roles/scap_client/defaults/main.yaml
 create mode 100644 collections/ansible_collections/demo/satellite/roles/scap_client/meta/main.yml
 create mode 100644 collections/ansible_collections/demo/satellite/roles/scap_client/tasks/main.yaml
 create mode 100644 collections/ansible_collections/demo/satellite/roles/scap_client/templates/openscap_client_config.yaml.j2
 create mode 100644 satellite/README.md
 create mode 100644 satellite/files/ssg-rhel7-ds-tailoring.xml
 create mode 100644 satellite/files/ssg-rhel8-ds-tailoring-stig-gui.xml
 create mode 100644 satellite/host_vars/satellite.example.com/activation_keys.yml
 create mode 100644 satellite/host_vars/satellite.example.com/content_views.yml
 create mode 100644 satellite/host_vars/satellite.example.com/defaults.yml
 create mode 100644 satellite/host_vars/satellite.example.com/lifecycle_environments.yml
 create mode 100644 satellite/satellite_promote.yml
 create mode 100644 satellite/satellite_publish.yml
 create mode 100644 satellite/server_openscap.yml
 create mode 100644 satellite/server_register.yml
 create mode 100644 satellite/setup.yml
 create mode 100644 satellite/setup_satellite.yml

diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/files/css/new.css b/collections/ansible_collections/demo/reporting/roles/report_server/files/css/new.css
new file mode 100644
index 0000000..3266a46
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/files/css/new.css
@@ -0,0 +1,202 @@
+p.hostname {
+    color: #000000;
+    font-weight: bolder;
+    font-size: large;
+    margin: auto;
+    width: 50%;
+  }
+  
+  #subtable {
+    background: #ebebeb;
+    margin: 0px;
+    width: 100%;
+  }
+  
+  #subtable tbody tr td {
+    padding: 5px 5px 5px 5px;
+  }
+  
+  #subtable thead th {
+    padding: 5px;
+  }
+  
+  * {
+    -moz-box-sizing: border-box;
+    -webkit-box-sizing: border-box;
+    box-sizing: border-box;
+    font-family: "Open Sans", "Helvetica";
+  
+  }
+  
+  a {
+    color: #000000;
+  }
+  
+  p {
+    color: #ffffff;
+  }
+  h1 {
+    text-align: center;
+    color: #ffffff;
+  }
+  
+  body {
+    background:#353a40;
+    padding: 0px;
+    margin: 0px;
+    font-family: "Helvetica Neue", Helvetica, Arial, sans-serif;
+  }
+  
+  table {
+    border-collapse: separate;
+    background:#fff;
+    @include border-radius(5px);
+    @include box-shadow(0px 0px 5px rgba(0,0,0,0.3));
+  }
+
+  .main_net_table {
+    margin:50px auto;
+  }
+  
+  thead {
+    @include border-radius(5px);
+  }
+  
+  thead th {
+    font-size:16px;
+    font-weight:400;
+    color:#fff;
+    @include text-shadow(1px 1px 0px rgba(0,0,0,0.5));
+    text-align:left;
+    padding:20px;
+    border-top:1px solid #858d99;
+    background: #353a40;
+  
+    &:first-child {
+     @include border-top-left-radius(5px);
+    }
+  
+    &:last-child {
+      @include border-top-right-radius(5px);
+    }
+  }
+  
+  tbody tr td {
+    font-weight:400;
+    color:#5f6062;
+    font-size:13px;
+    padding:20px 20px 20px 20px;
+    border-bottom:1px solid #e0e0e0;
+  }
+  
+  tbody tr:nth-child(2n) {
+    background:#f0f3f5;
+  }
+  
+  tbody tr:last-child td {
+    border-bottom:none;
+    &:first-child {
+      @include border-bottom-left-radius(5px);
+    }
+    &:last-child {
+      @include border-bottom-right-radius(5px);
+    }
+  }
+  
+  td {
+    vertical-align: top;
+  }
+
+  span.highlight {
+      background-color: yellow;
+  }
+  
+  .expandclass {
+    color: #5f6062;
+  }
+  
+  .content{
+           display:none;
+           margin: 10px;
+  }
+  
+  header {
+    width: 100%;
+    position: initial;
+    float: initial;
+    padding: 0;
+    margin: 0;
+    border-radius: 0;
+    height: 88px;
+    background-color: #171717;
+  }
+  
+  .header-container {
+    margin: 0 auto;
+    width: 100%;
+    height: 100%;
+    max-width: 1170px;
+    padding: 0;
+    float: initial;
+    display: flex;
+    align-items: center;
+  }
+  
+  .header-logo {
+    width: 137px;
+    border: 0;
+    margin: 0;
+    margin-left: 15px;
+  }
+  
+  .header-link {
+    margin-left: 40px;
+    text-decoration: none;
+    cursor: pointer;
+    text-transform: uppercase;
+    font-size: 15px;
+    font-family: 'Red Hat Text';
+    font-weight: 500;
+  }
+  
+  .header-link:hover {
+    text-shadow: 0 0 0.02px white;
+    text-decoration: none;
+  }
+  
+  table.net_info td {
+    padding: 5px;
+}
+
+p.expandclass:hover {
+    text-decoration: underline;
+    color: #EE0000;
+    cursor: pointer;
+}
+
+.summary_info {
+}
+
+.ui-state-active, .ui-widget-content .ui-state-active, .ui-widget-header .ui-state-active, a.ui-button:active, .ui-button:active, .ui-button.ui-state-active:hover {
+    border: 1px solid #5F0000;
+    background: #EE0000;
+}
+
+div#net_content {
+    padding: 0px;
+    height: auto !important;
+}
+
+img.router_image {
+    vertical-align: middle;
+    padding: 0px 10px 10px 10px;
+    width: 50px;
+}
+
+table.net_info {
+    width: 100%;
+}
+
+p.internal_label {
+    color: #000000;
+}
diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/files/redhat-ansible-logo.svg b/collections/ansible_collections/demo/reporting/roles/report_server/files/redhat-ansible-logo.svg
new file mode 100644
index 0000000..2ecef98
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/files/redhat-ansible-logo.svg
@@ -0,0 +1,48 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- Generator: Adobe Illustrator 24.0.3, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
+<svg version="1.1" id="Logos" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px"
+	 width="930.2px" height="350px" viewBox="0 0 930.2 350" style="enable-background:new 0 0 930.2 350;" xml:space="preserve">
+<style type="text/css">
+	.st0{fill:#FFFFFF;}
+	.st1{fill:#EE0000;}
+</style>
+<title>Logo-Red_Hat-Ansible_Automation_Platform-A-Reverse-RGB</title>
+<path class="st0" d="M383.3,228.5h18.8L446,335.7h-17.5l-12.4-31.4h-48l-12.6,31.4h-16.7L383.3,228.5z M410.9,291l-18.7-47l-18.7,47
+	H410.9z"/>
+<path class="st0" d="M455.2,257.7h15.3v7.8c6.2-6.2,14.7-9.6,23.5-9.3c17.9,0,30.5,12.4,30.5,30.5v49h-15.3v-46.5
+	c0-12.3-7.5-19.8-19.3-19.8c-7.8-0.3-15.1,3.6-19.3,10.1v56.1h-15.3V257.7z"/>
+<path class="st0" d="M543,315.5c8.1,6.4,16.7,9.8,25.4,9.8c11,0,18.7-4.8,18.7-11.7c0-5.5-4-8.7-12.6-10l-14.1-2
+	c-15.5-2.3-23.3-9.5-23.3-21.6c0-14.1,12.3-23.6,30.5-23.6c11.3-0.1,22.3,3.4,31.5,9.9l-7.8,10.1c-8.6-5.7-16.4-8.1-24.7-8.1
+	c-9.3,0-15.6,4.3-15.6,10.6c0,5.7,3.7,8.4,12.9,9.8l14.1,2c15.5,2.3,23.6,9.7,23.6,21.7c0,14-14.1,24.5-32.6,24.5
+	c-13.5,0-25.6-4-34.2-11.5L543,315.5z"/>
+<path class="st0" d="M611.6,235.6c0-5.2,4.1-9.4,9.3-9.5c0,0,0,0,0,0c5.2-0.2,9.7,3.9,9.9,9.1c0.2,5.2-3.9,9.7-9.1,9.9
+	c-0.2,0-0.5,0-0.7,0C615.8,245.1,611.6,240.9,611.6,235.6C611.6,235.7,611.6,235.7,611.6,235.6z M628.6,335.7h-15.3v-78h15.3V335.7z
+	"/>
+<path class="st0" d="M685.5,336.9c-8.5,0-16.8-2.7-23.6-7.8v6.6h-15.2V228.5l15.3-3.4v40c6.6-5.6,15.1-8.7,23.7-8.6
+	c22.1,0,39.4,17.7,39.4,40.1C725.2,319.1,707.9,336.9,685.5,336.9z M662,279.2v35.2c4.9,5.7,13,9.2,21.8,9.2
+	c15,0,26.4-11.5,26.4-26.8c0-15.3-11.5-27-26.4-27C674.9,269.8,667.1,273.2,662,279.2z"/>
+<path class="st0" d="M755,335.7h-15.3V228.5l15.3-3.4V335.7z"/>
+<path class="st0" d="M810.5,337.1c-23,0-40.9-17.7-40.9-40.4c0-22.5,17.2-40.1,39.1-40.1c21.5,0,37.7,17.8,37.7,40.8v4.4h-61.6
+	c2,13,13.2,22.5,26.4,22.4c7.2,0.2,14.2-2.3,19.8-6.8l9.8,9.7C832.1,333.7,821.5,337.4,810.5,337.1z M784.9,290.2h46.3
+	c-2.3-11.9-11.5-20.8-22.8-20.8C796.5,269.4,787.2,277.8,784.9,290.2z"/>
+<path class="st1" d="M202.8,137.5c18.4,0,45.1-3.8,45.1-25.7c0.1-1.7-0.1-3.4-0.5-5l-11-47.7c-2.5-10.5-4.8-15.2-23.2-24.5
+	c-14.3-7.3-45.5-19.4-54.7-19.4c-8.6,0-11.1,11.1-21.3,11.1c-9.8,0-17.1-8.3-26.4-8.3c-8.8,0-14.6,6-19,18.4c0,0-12.4,34.9-14,40
+	c-0.3,0.9-0.4,1.9-0.4,2.9C77.6,92.9,131.1,137.5,202.8,137.5 M250.8,120.7c2.5,12.1,2.5,13.3,2.5,14.9c0,20.6-23.2,32.1-53.7,32.1
+	c-69,0-129.3-40.3-129.3-67c0-3.7,0.8-7.4,2.2-10.8c-24.8,1.3-56.9,5.7-56.9,34c0,46.4,109.9,103.5,196.9,103.5
+	c66.7,0,83.5-30.2,83.5-54C296.1,154.6,279.9,133.4,250.8,120.7"/>
+<path d="M250.7,120.7c2.5,12.1,2.5,13.3,2.5,14.9c0,20.6-23.2,32.1-53.7,32.1c-69,0-129.3-40.3-129.3-67c0-3.7,0.8-7.4,2.2-10.8
+	l5.4-13.3c-0.3,0.9-0.4,1.9-0.4,2.8c0,13.6,53.5,58.1,125.2,58.1c18.4,0,45.1-3.8,45.1-25.7c0.1-1.7-0.1-3.4-0.5-5L250.7,120.7z"/>
+<path class="st0" d="M869.1,151.2c0,17.5,10.5,26,29.7,26c5.9-0.1,11.8-1,17.5-2.5v-20.3c-3.7,1.2-7.5,1.7-11.3,1.7
+	c-7.9,0-10.8-2.5-10.8-9.9v-31.1h22.9V94.2h-22.9V67.7l-25,5.4v21.1h-16.6v20.9h16.6L869.1,151.2z M791,151.7
+	c0-5.4,5.4-8.1,13.6-8.1c5,0,10,0.7,14.9,1.9V156c-4.8,2.6-10.2,3.9-15.6,3.9C795.9,159.9,791.1,156.8,791,151.7 M798.7,177.5
+	c8.8,0,16-1.9,22.6-6.3v5h24.8v-52.5c0-20-13.5-30.9-35.9-30.9c-12.6,0-25,2.9-38.3,9l9,18.4c9.6-4,17.7-6.5,24.8-6.5
+	c10.3,0,15.6,4,15.6,12.2v4c-6.1-1.6-12.3-2.4-18.6-2.3c-21.1,0-33.8,8.8-33.8,24.6C768.9,166.6,780.4,177.6,798.7,177.5
+	 M662.5,176.2h26.7v-42.5h44.6v42.5h26.7V67.7h-26.6v41.7h-44.6V67.7h-26.7L662.5,176.2z M561,135.1c0-11.8,9.3-20.8,21.5-20.8
+	c6.4-0.1,12.6,2.1,17.4,6.4v28.6c-4.7,4.4-10.9,6.7-17.4,6.5C570.5,155.8,561,146.8,561,135.1 M600.2,176.1H625V62.3l-25,5.4v30.8
+	c-6.4-3.6-13.6-5.5-20.9-5.4c-23.9,0-42.6,18.4-42.6,42c-0.3,23,18.1,41.9,41.1,42.2c0.2,0,0.5,0,0.7,0c7.9,0,15.6-2.5,22-7.1V176.1
+	z M486.5,113.2c7.9,0,14.6,5.1,17.2,13h-34.2C471.9,118,478.2,113.2,486.5,113.2 M444.2,135.2c0,23.9,19.5,42.5,44.6,42.5
+	c13.8,0,23.9-3.7,34.3-12.4l-16.6-14.7c-3.9,4-9.6,6.2-16.4,6.2c-8.8,0.2-16.8-4.9-20.2-13h58.4v-6.2c0-26-17.5-44.8-41.4-44.8
+	c-23.2-0.4-42.4,18.2-42.7,41.5C444.2,134.6,444.2,134.9,444.2,135.2 M400.9,90.5c8.8,0,13.8,5.6,13.8,12.2s-5,12.2-13.8,12.2h-26.3
+	V90.5H400.9z M347.9,176.2h26.7v-39.5h20.3l20.5,39.5h29.7l-23.9-43.4c12.4-5,20.5-17.1,20.4-30.5c0-19.5-15.3-34.5-38.3-34.5H348
+	L347.9,176.2z"/>
+</svg>
diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/files/report.png b/collections/ansible_collections/demo/reporting/roles/report_server/files/report.png
new file mode 100644
index 0000000000000000000000000000000000000000..3c38d52aa7bc061d1b59b509327669cf0e735627
GIT binary patch
literal 2098
zcmY*ad0bN48s#|TkQkUl4k=<<PM~I*2#%zXIGf{jAS6Xa4Cw-ynFH6UG{^>@X=FAi
zKFxkwX_iT(*`Sq0d9TBDsGKY9re)Rx^VxfQ|Mp&Me`kH`+u!-)oP0kYPq4C%G6)0$
z<8jyk39c-~brRNTkzFPMAT_|#4OG{yHz7IXkVEnNyuCqY60Qi62h>2aQi)`O03DG0
z3I~C91G;NG0NA#wkpY2nDImF3O}GRlL*}VulVq==EFbvg$d_4D2k>QoacN$a*#KPv
zN-4OoR1he+MY;g-V1t&#EsPQr$_Vu)phz?-f*4ENOGdD$Dbg$unuU^3Dw#oqv8YMO
zsVEi(zM?=$xHOD}!&W4WL<~IC+YjbWqmyBF2rGmY+({V*gQ4lM`%nQ`kJWU^2?LL3
zFj7!RB$LTRFt;OU^f;uogM$Oo$_8m;V<}Nsrm~Y6M3!Z8s?krA|N3CbsU$ijg+ZYu
z!=%2%y|e=i3>+>kv^IX;lR??{t5S06YFm;9k<uqfYlIbY&0CU+mPS#&bP8EgS?cd(
zjb2gyUu?Aw8YwOQKbQI0=}J`6s*^Grx%S$el(nOV6+j^Q5j@s4hy~1?ZGIHHOZ~p{
z0=2^!0>%<;T;(?UdupG7s$*3MwvcZMj|n0X_6GpoWu<NcaTSpvP^kY=6|kNy#9xnD
zzTdH}ehQcVWa@DJ(w>)sS7Oe5!c0w???CvV+xwXv6cyWbI<m(yJ6uS7>kn;v|8C6^
zSJdA@C@(JuUL86RN&In67(He7GU#`r_d~`w-PLo@Bg`1BhD2*MqADRhwe3dKr3t=4
zZ1PNLGJzV)^?EUBAT%7-7>*i_1G)wlDo@V}6y~lLIIHVx-q9Fw4Y{V;yz|QbQsIJJ
zNxg=ORaRXDzOJc|i!tZFE)!yeG{ba{;djCyeS8~XSeG*;_vu@N%XD?&3sK1X$Hx~B
z`>B#MHhi>K7sHUdmGYK$?bKIqvCYv{u=r-mnRwhGlTTaETz~WqCg_>04JYK!w^ix4
zp2>=-r7@)Td4v}1<CP;;C(l9eKq1{!&7-DD3tsW?%^hUj&Om5aNenZ}1j^Bep799b
z9T!dcO+1M^@A^lgGW;V}+-5F^{)hm+;8`v#&zs>Nvg*cXyF%e%OCPYUGnRl_X-jRP
zukz&_f!yz&X?uCqRiA5k)}022(|lq`Z0{pjbnlqc`NiHWdtJ1qwj--B*z8u3p_=f+
z9mgC}JK~aqerGt_>p_GnVVwTGwwILmDd_&a4}`pB|G$F^(dcIf)CYR9$F*=c7#cCu
zb9RcX!o99-Ll_ejI3uhE`hIKG4^W_o`QDzGR>{9cLCSL*NyHkXe$_f&`5acav;db@
zVXvl-@0;(}GK{(zSP?%O0G;@(H)}z(OL1sauzYvp(;q6faQiJud;a+?Fl|qU!(7-o
z_9T`SJRV+lvOMIiPn9o7PhioV+Jf8puKL)l6M(+BI4`ro^Fj9GN}IUiF+~3SWVSFh
zv#DOg$vj5OUg>^pw?2i(YKd((+RBZDJ!b|&Hgy)Np%mcFUNVBJ#e=Ue;%2aJFkkLn
zl+CRq^M8eG=Z>$-)Es#^86nuqGEkVB;+z0PU4rM^6ODPfBE_LG5v+$S5^$^Y$69Z6
z-y1<1jIegdg>y|ej7?v6s<YxpE<E^n9#s_aBSC12;YBq6#VM1=O+Pp8E*!0iI!!o#
zHm?0b<%rQRY1j_1X`U&&NN}xM66r#tdInnzranLP3u4Ax*qt!3)vnE>e2&;&OIC(^
zhxRk|m|xCZU8Ir{WX0M&fk|SQ`s^t4FULkp_WSf-FDed5zBlvKGq?c=bMzl&Db@oJ
z=O=FkDvy|kbdwxsi;MU=vw2$eJ*^bQ=;843zaHh!^KzT>MT&Qe4qZ-hySpt9p3Ek2
zjf6X7az_0j%yThp98~oUI(3YYpPPZy)39j74>rlfy?Dj(mERZj%3)7mZ{d5}A}<X)
zRmFp*SKb)QlDN7#NV!Q-%n4xsApH=byf<OV1ZY5r!I2Z|2O59|@4^@BUiIs13+Ow2
zau$#8NFtQGPhQU3`qqR;DNs0MY~@|7L~uZ79=e3N_AnF)elcv%_nIb`^lG+|M%f{Y
z0sQ{N#>xp}dv1IZ&&gk}L=)Gf+V>UVT6MA*^OW7}o)$lQ_`72p`8{rP>_UN>NA2Xj
z#78xAr<{*xdW^YLey!O7U)rP-I+&-23yN;?h&6DReWc5k&7TyA^QKAhF>E6`%s>65
z4mVu|Y(c}SZmFpcPk=8oI*8Ff0!t$7bMXw^^3yEO5XBxy;_Vw9Y*uJeq{e1sb>64(
zujwiUVubi*OYw7i4Q>>Cv7#(vBdoU1h#i+xly@My>U!%X7!Uf-iP<HM9|T-w|0z50
z7wzoFM~udu{xt7|Q05euqd5MbaptJ?t_!bE{kufpy=o})5WgZ?(?_v2qzDt#Wp*Dm
z=Qdk%1e`|=ud=&&aEskyS7r@?SkED?d*gC}voU=rUNbPaeUl^Xe#y-Ew*2p=O1Qq@
t+}nNEJZQFkwuxZ-Umx11o35PB%m8xG)|9sXV_DK4Cw`X?w$3dk>pyw3Td)8C

literal 0
HcmV?d00001

diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/files/webpage_logo.png b/collections/ansible_collections/demo/reporting/roles/report_server/files/webpage_logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..65b583651477a4982270f263a8b4cf7a1d540d5e
GIT binary patch
literal 45921
zcmZ^Lby(Bi_xNa$5>!eA1?g^(7$Ab6NT;MocPh1wP*4e#0Sd@Kq+7a&AP9&fB&4M_
zq#MQt-`9}$=lT8f+w=JN_`3JRJ@?#mPu$~6y@#4K7g;ZYKp+~ed+G)t&;>jQMBH?N
z9QcyqVP+2eMd^Ld+z$j|<R<(f(lWTU2?E^!X{oCkJxgDms_<enZIH#(Qg<QbNM-i)
zj-=J|+(<q}=ul6JUk&yVRd*oyL3Zmd$q({(5!aD#Z`snwCB}Mf%EKMWXFh)dDOkq5
z;9=@|tuyiKgv7~bGH*@hu0fxp@j*c$n&?7LhJMjsqoSg|ot2qu04x8$pZ5!`ju(4G
z=fkeUbrP{tw;n5Sda8Fkd;krb)K_PNmqG7#oGk5*{)fZu=5D*QPVP-aBll`$EI#I$
zzM9H$hSvEovhV_4?6!lyDedv3=h39!Cb}#Yc0L9xrNnPmN-Vj~kG*1Zf7tbi=IgD;
zf}9x{5}idl(Uq6_9XljZ66cdMb=1II#$QDn>3ynWYj3mfe@M9lrU>J3Fjmt+&G?jB
z$)&mx1<QQCboCsdoE-p=d^z?y<{CGqvY5@HdrjKrfE#4=^SF(b7|a{Q10p@2Y8lm!
zy7vHBLYKJ5p^G8A{T?4@#xGV|{%}OsRkj{2QrP)KnBQeAOI>%>?<G(5$@Rkr2}@tW
z(bdJSi{XfQ$2Bd~-`hgxGc#q>z$7v+$3((Y)~+HJ6JzRH*Edm5ZvQM=DK}&amQ|)X
zpJ*nWg$Nf2N1(+$u;wY%&!Id+<wMh;(sesZkWyiRD&>FkM6(b?g|{{(y&V1^Bz~?Q
zv5v=?{K<^f3#pO!AR#`VrJ;>+vgM(FM8Ear6B5;AZm+}3Rm4NDK)+Qr=;t+YdA{|0
zqHR+Yg#5FnuxyFU2t0FWDm-@QcG+acZU8M2%PHCUr1_h>k~b1#x|FC}7WNUXB9}p_
zRL86FpQq4P8A<yHrvMI~^O@fIz;eYuklSSJ<J^5o^w>@J!d%Mb)4j?*Jh&EHqn$Y5
zq~t7R!L$ZG2N3fH0Q5S8n@0lMDXUJ;zal}Dcxn~huHXub`Yp7+%c=Y*v-J5`rm`AX
zN%rN~%NVr14aLtzEn1Mr!>)q=lvU~0?vP)i%dC^r>I%|ezZX-+n@o2OioJ`;>#D-_
zzf;7nti(KX-eo!;*p2MhO>jBNa**HL5#n6;dKjs4KBAHn1qs&frMuqy2celZL~r}w
zcZYx91>fBP+jwaxR?MCc=+R{%*i+TrH9LAM%18tQ%sL^I|1C>}Y}$`LczI-u36?bR
zDyAzjW;8KIsrNtjR&ti}oOtN3(Qn<(ow2i$`VS1r>VjQHScP*4WFAqRlNq@;q>FmM
zX|2(*KQ<cv*ZJgp{jjSH*yXp~RaT38!1u!ckw#u*-WV3G?Q8)VdCBarEZ%zDwRo;9
zFi+<*kVPlA)fJVpRn3mRJ{OWp=Y;whbihjDFUJ@Uv!Z<`P%By;k$`QWx^O<cb_u(j
zaLwKZ6ucHldAeF3d;Z<qr!!=)<JMePKm4oM!dsiCGF-Hly61yt@wo{0_v)(`abh=u
z7DjuuI+U3HJFdxGyF+w{xG*B-&y9&LhfckV=UNEcp~n_XJ{jMvRM-!&Ew8!1g37p0
zeU9<<Wo!Xrz?#|$0s&{JD+cDAi^Eo24ZJ5g{<>mJaK0sK@_hE}byg~)G6u+@51=C$
zHua9`z8J0)_Vdw)xyyN;jlhyLTogDn+;IO%c8C)HYmKmX0}TKBCds^ET%grqqTa-Q
zd|ND7BkX)Kl2Qu)tJhidz08SXIqf;(O*ep<2Jw9|*kdnF(*Jg{^>LHwbDp8V#1ufC
z-zRp3Sjj9=okQdTShRZSaN{q;ZT>?-r31d2s@@bIQv&E$`i)vVn+5avSm(nbU56fL
z(QppA-&QOC*#b4Nbb~ZNRB}}(YVLfd3MNmDu*7E+ZF1+IG;}d}oP>j8zq$h2xWRnR
z9})vBd$F=Y6eMKp#(7BcZ#MEf@b&H+B1XUA+viIbb5sK-0h`LQMn-k{&G|grUr~_1
zc2!J5A_<4%HP+{(Vw3uH$#{ldaP)C|D=UnguNGFpfGvnb(xuNByAiHS;D<B=$o%OX
zV*({-E}t_5h#zZSsnwCZNi5`G&rsp9{BJIZnJWtc>@`&~uh@UQ^HJi90ktS^DjGT8
z1eiDgoh>om`;5~pqZND(8vCvv6}%RAw2(#ih+B~Y<edv2)X>(lJrgXf?Gn~pG`o3r
zF0l9}$lH?k@H5;q56+$k2TorC{T5Q~Oafw8HX7fph<}LZ9@Haddisr(7+IGCceM8_
zOWsgxJ0nD$(T~D9AB6{w{UU+A)#6`+AAn5N-k&KR>@C0;VyYrTuF8EPf*9$&C~nnd
z5juH%hMc(>;31)V*RWeTj#{`InkU1xU&0I8eWdM@Ep_-KI#kBe<c!3#G+-snYh-IZ
zX_0DRP`{+ZgV9i=rr1B_X1ujq$*vKi+E{9#3(5z8i%0{?;4oDD{eJ@Qy^J-l=$6{F
zS0}1+n+P5R#Nd}UfDXJwuj$vye~LZcUO}AH=DJAvw%rS|^00aC)-WU0SA8+w-oZe-
z;L9DtznU+`lO!h_jAwYk+)|ggiU=2%_w6ji@Ugo)FSTGfU`wXc$*Ev_a{QqOMUIVM
zWP{DrRAy3W9;@B}!RWR5J>Z*jxc8bI?+6MkM*%<ro7zxuSq<Dz@n}(ShHfMIh92z+
zt~v^aQz8d3XTk@!V5sC3f-Ud{&b#1~DklHGuNI$AkAH~E*WzE~$t>fV(;AYB7U2h}
zoPLJa^c*(|a?jd#Z~+i16j2b9mCpAM8BKoBy|rWBCLfp@B!*vuwRom3y>z1j>E%h}
zx-qVb=MvP^_Bk;7i3C18Wx%@sV~JMBh+~xFCFXbpE6hM!o^&_A>Xfa%1q5121O(u=
z_4^zu41m&{rD#Zj9t!P}v?t2GV~6h}j&+6<{o{y04W^y`9w_NUXETDS%l{rC(%BO#
z^KK_9puu&|uHV;fIubs(0)Hna3~=k)&zrL=m9uM4Fade=K96Pz%1*cx1#PRCieov{
z+T|8>)6sGH=*1y42vp@%grl}^PbCQRmk!2BniOIyT~i_%t4)h-e!xE!`1{}aWxfUo
zT5O!k<jJQsicUwFZ9&=7L#f*U6!6QwxjQ7D-E6xU1+h&JyuXsrDf(|fLlu)}e_Dj3
zD;_r%q|L6rN{=$sUT^+42&lVmmx$&h>n^2QSXC&pZt+F4;$JtfRjPj^k>!+lf47i3
zAR-eF`?-zlm$u9{|D9ae&CA&3krKKWp@Dj3*GI`Oof}-+?@^G3#IDz?Ei8Y3t4@{H
zDXZK(H%Z7F05T_83h0Uaugb^<7c9}z;%q_%^qiGf{kl)rmoy>L{fUu19y**gmbYww
z?!e!Tp5HFycQAR^>KzvH;=U<PuW*nks$z&r*pW?&fjb3P|FLV!2N3tMKhZx$!yZxx
zFBHBeW2^jV5Nxaej|MYw7Gi&qC%pMc6VJm5VgBB&ny^}DhNJ|HMU(QsIsGAO;I#>b
zW%^dkk(MeQ%LZBcl8?4a```0nCt$cSV32F624SiM7RRK$tl^k_@~D2RYyAJ2G0uPO
zB`+3C?)$EvOAU;4@yvlgY<Bu*a#hx%Amah^#hS-5oGpL<XsISx1#H0#7q+aQ3ZL7+
zFz(%<jHaNvgHp}oukS_8ay*J?((QC7&i#<H;iu$~FS7JoHj4`V^>Hs}>AYn;&W+{n
zyMEmePhsr6`en4PlH5(^3t1eqLiKA-?HB*asb3aY1mK?e#ZesbaJCd4M%k*AHoQkF
zOxCFUTf}bPap~AH&yX1EfhW}mFXB3hWAv%;<CRnExh=m5R5bmT&(k~*4!a?a)B-{d
zCBgHhAz~$VC6Bm~lE)_#^|=}Ie=;QTm*{&*A&w_poF^t<!798pfd7<6ubG^}t`HNW
zaFzYU<Ou6g58V$)pEl8UX>>`AycmDJ<%|+z{koL<?nyM?XMW;?|EQoiPkh>DPJz8+
zq8H_yi<F_GexEV{$uOr6Ud?w&#gEg0bKn~ljr3dQN7KBr+I5655BLS!UCKg8yl`ub
zowRTnLdps&Y5?ZR$pu&c>+3v`SG~Y4$&_0vkF2Xww+(*|TTSyd`Vb{^?3DHd{2zi@
z^=2ykgWNbJ1&7Pfl5F*D=Q2}arIDh+L#{)TkC>J3H!&r-F0@>8j@rxm>Wb@aGwrJJ
zhXQN&C;YO<K1F?Ia#0S|Z{bKTi)2{+q`AF=9ox%*im+Yxs{4DVh*?a8Kj)+G*UF8Z
z`TF_vxE6}7-m#fbuj7<sHUjxDlQ0b0?7I_sjP79MZ)5VQcN+)hM|{rnz3(?u;e*vN
z&-x=r5FeEj4h4u1=Er}A89P&3_QpRLq&`=-hHo6p+#4;Eas%v_ji*q^#(n-iNRXaP
zTdQcRGM}9?Y$R#4;y3j8G;n>?LqRf1@hRf?$QoTuP&HVpF$?y?1L&ocF85FqKS^Zm
zb;aCSI)APNqRH5PYml3s+D+N}?=zQXb!mGPi)ZB+fm`Jxl}6c|(vZ-D?HvtwZGNxV
z6X^tfHVZ?8lAfhQTy^Wcx)rI)O9ShxP|>tM#|~V$4{_eMEPlfN3c}BgCZwQ<#_L1#
zN<!HYHc~o<!{2A&gF9JJ<juYu{n6P}az%ix%)sF&h;}xr<V%H~P8!Pm<oCe*#S<0Y
zKs5}-NTEw=nnSi%?V#YmYke3uX2;yTi&aL;>Cc-+ziZhEq-x{Fo&Hm1J0Xj|XJ&AF
znWQb-&3kU)qO($dI{rn}1vS8p3-e6bv~NM-t7|}KPWF7&NIz;JB`)%j60U7V_fNVA
z$D>UOi-2#wYF9mzLm+WPGbK&p=JR!hgR5Um)i|W1v(d5|PIhm2ud<nn?#(u!h;3@`
zgD^lu^LXK!Uc{^6+5-{0>?V<oq)a!+R0t;EOxgiKUe}?Xo_inE72{(@#qraP9K?{?
z2=KhI`FoM}yJDP?rOnYT@8htAhu%fOy6<Fl47Do{9y~oBd||dQI@QIWGs>Sck+U35
z_8A^%psgDcIJGnLk>cq6j$aLFGK{`k$A57H3Rw#_w{CrL<xt+UD1AP``hcKfW+_Q8
zAVBn)7=v~ou`l~nj~@;;WQCGKXTQquv`_oPrkztATjzX2jNQkQ`nz_%xHOoy-L&c$
zv1DEdgz9F8_>JO&zS(b1JB&o!#F21`G3_3Sb7myBp4#I=z#&tOybFY*h!iNfwJXWA
zAEXSgiSsf&bn1%$&lGQ>qQV)l;lYZ9yB5U(*%B1Dv@21z(~^DNX_<7|JGwR`!XM=r
z_gMx5PUUf2t90%978rImD(s<xazJg<`kqob;o?`(^=HL?xHd1{5m%Jd(}n=6cbIbB
zcETWyUtbJxPF*rrXES*wFH$m3*H;3nziwMf<MZ9O{I3gbeQYyXZdB6?=6!ij-AzVp
z$z+}<DsH_&7~@wMCo%22dmv8`QNyS?#)-kl>joEp;dUOw2~jd<=!Jj+pN`R<NXq)f
zoF=D+#=qc@KFIBjig;WqRZzVw(XfEdlcPvQaI$`!n$YXCDRk8Y!2<Vx7`X#Zj9Kdz
zy=JO>G#c)uZPlID_L0S3q&6YQDk8Xvd8eAMgpy9Xx7SQo--)Z$cL&91jp#K?7k|+N
z%iuf6YaaZ&Gf5F7@+7-zVrpgUj6uB$69B8rw}bn8_^A+M#-rhW-7DjH`b2;A=bx1&
zeQ!(n^7eL5a@yt9WSJ<{)@Y%$mT5r}V*xG-4mjhNE{iaWfLbXY0)Hw+7L@pfrC6<w
zA%layS55qJ;2AS-xr8DUszM*J&iijCE^E(fZqAR^Xm2`s$1&tc&({ZXWSZo7tOZbJ
zyLPU2X3U;lRUVDr7$=FT%phy!tUgv;Rw&B>8C69$Z4$5_&hDe1-1n7gvVwEFa$Fu?
z(heDL)A3X3>rpy-`TCc98wWw?76DoPs3#3U%02XC946k>J3xTD5qlhQcg&y6q*SVT
z!K9<Dddz=e|B}pIw8h7$CYW;FhCoTwKk_B!w|5PR!P!$Cbw+LCYzKv;Pyn`4hZLH5
zkw2$I-14P_#9hI;qrG6mDpE+*ZKCD@slKclL{j%b-2|7sDS?CARYn-6)o{e>{Kfb`
zx4a0nFW^<KlXGA{P~n(`>(Z^sp*_zeglSbcT#n5@Qt)%1S`j=s<nwfeUC9rg{Vax;
z=n+QV)Op<=VAHtch#|`g3BBj6vJJEo!8gJYBfA2JhVjNBB>nftAtviSL9GO;p!@Qs
zfaGYfidPRm6jrY}Ek!fnjy}b=ho>H@3;)XM1WmV&Kf45gFV3Qx$LYRE;Z}{k`9Mrr
zYfb^%(S_`>i%$qU={ysZ24Np-!hXxEX8W!Xnzcs(S&Vk^9&lqR)~EcoYVwR`+!afI
z=rS_}H>eIz^>t^3z@~@xD}6&cLkS4Vi=P8ZwVan6<{R`Axb{`0HT`PX4v(zVLydP-
zzrKRE*2>J=HM`PiTFUJjb}9tLEq6x34FcRA5rdmqRLRR>Wx|8nE@v^4EkD(B2#-LX
z?r=&CVpT^SR}ck-<j+2{{pk6CsvIWGCk(C?usV)>jaz~bdfZ%oh?jD$QH(CsQ@c0K
zOA<LK)dx{uZ7dY5wDL>4P7u;wFtm*;L{G+CZs|bD9d%Umiw;*2+Qy7;r5D(>3tKnA
zw#=2gq-Hxn{aE^L;s%;a1`GYdrYH=)YU(!YzCgG$>r2TUw1+GiH@FqE5-_6oeggW2
zz0+bP81hAt2b0L~c{vU6G&tzD&@qQ~(Oq;*Tdfad<7&s57fFOl-7k#Z9(P+#M$~Uo
z6jh`>N=nTQs$1HFSgdm+cm2pvCGFk|H3;}%%PgwLJqI3`mKy{_4FvBdlk9cuL4#Ws
zYX3NuZvDFT-Hz6j3LCFNWdr9?iXqL)a3VpY&KtvQu|YoJGev6-d+WLI5ym?H?8!+@
zSXSf4#WJIkd0oN|<^TGSg&5qnmz=+@jOSMAe`J%Cuml;}*@5{rJZ`g<)}BQNEw;VS
zQ8pLFRmfa(_%Yg(gs#;0M9wbOAY#Uz=9oG<eGET~O|fVz9k8-PO(ytYjt`Zb206Jz
z-zrF>B1SB;Y)7`8|B9UyLYtN=e^A%@MLh4SPgr2jj@$4EgAB3RWe;$XL(^F>LZu+R
z3uJS*+jGAG6m+q^<r|wG>Xy>muYJa3;wc&uNyPbc@|0M@s*QSeT|%~Qf3c=B&=zbY
z=g$dQJRuUhNH_<b-+vNPe=w?Nr?E2vn|=?WLg62>4hv(CdxSL*beN_a$LlG^WA#W!
zuy;iLep)ko32GFLrvV(PjAol29SsWlt+1m#tv(I;AKMe#&7vO8M@Pw;#ZxO-Isuf2
z&U+;DRM|qyn+<zSztd2&ueCdWP;nX2lC?W{#}DLc0BKMsy0||<H|66{7dP9EPFXzG
zz4EP%je1AQBAcCU=|w#98$3D5{N6$(yJywnfHlQ^T#It-v)g>(xlUA`>?eiYS+PH{
z#ZhUlo>C1-2Ek)eeFMa&Gq39u${q9O)6hHE78lwozFPceIIYQHLpf9^KiGSE^pN4#
zq=-#e2=v{Ip;E!@S?(u)@+IKDj`z|XrM!9Mb0UtcFavJ4))acjQz!LMvo`UzySUBX
zjXeuZjs@LNaM`Zh@gTWhvgVmQng_)Ui<<Ng16aDhROPz(@@<=IFF$k{syBAQIApI7
z)H4t@UKFpumxdATSvpdqVerdpSz~}tmE!8@{L%WF;iK90qj`Al$T~0nGQVi<S!h`l
zEU>q^cz?8_i0TEz!o2A6uPZo9v~zuFdj~;uOe5*Lpv2|eZj#={bT4g%pKrpfJ3oYp
zZSFj&lYxdg^0qKaSaaJ-Mu|~vB+L4Vhz_uCHVo3VHyu4if3iai!9m~G2A>(G<&-YU
z|7=buqe6QGTil~mS=)UwkE>(jt1}tBDcsfk>hh#lYVMGJwD9z)qiRQMU;yg&eaa2x
z{JLi0Xi2ceD2KJidlPy&uhdRx5#g+)|7kWn$tz;?2$H|F<6=VxQJsM&;PEc75)JB^
zr(TFG8cF6d&HJPfSC6Cav}TTg`k>U&LU%ssFS|zM7sv3=BT0QI<tag5g^ud&&}U<g
zv%I;e$jI%wlwQBK3#`lu$4qiVh=>C2%nvq*+f)TD_lKm80#<y#*+Z(|5^ja^H$!S*
z2-08GMx!Ig8qxN+ML;)MGzyA&YwE>O*iRR0NPDbkIrqcOtzKS$DB<D6^`)c%!BGL~
zkVy>2$17mB&Z9RC9mIuSDwG)nJW9vkimmsUL6~rcWO>~;o113+d3!hJzG%PM3oa?M
z;`Tm^f1H8^ftv`T-QXpSAFelw0NZcoMnM3guf1lJAFeryJ?yQ*t(xpByD%P_2N|mU
z7HT#(-*hUH60hdTftMYu2kWkU+}@cDW`AT%Y%Z80yLErFcxj0`^ZLfcZnmV5JG4iZ
zrTiGbciZFD4=&WXRmZav!of^VUTM7Zk&71l*50vddiP_1VkE8!*EP|#Y*;0x+*^bD
z_3KcA3RfKP!{m7zqGkf(>UH#6l!n!q)I<A_SJuf=6s2!#`_uWjyG*m*WmPuEr?^J^
zO<qrSXV2DX2g(s30(zF0s0OxxSnLA!`H7fQCG#H+*Fd#dr%t+IJIi&Uf$d6T^Lyo~
zG{Zd+V1-4C>YU-F%w#2@HRa*wZrT@?eV?acR1_RNz?GNQ7Po_qCdRsU>db#{#o9eS
zJ9<n&K92ZQiBp*wXWrt$c+%ad1dWN|a8*#zSWX+#wV0rb?K*jv_D)*5WwI>iw?i%|
z)RppC6~iz7?60oZ%X}-P42_CnVT~r{m#_3k_;P%##!eOlg^qsek^i+Dym;rVXw)>M
zmBnEZSU?Kx#ECb1_2>%u9ikgA#z*@EU!|YP@Le+HT7SsNu1m^chlv;2)H<2c9$CtC
zNe#Km)}`gjvixf#rVM2foL)1vYM7=$8MWv5gRcC2MlCjd>BP77tbR2z|G6J!Jo+h&
zL!%?*jzR(V!X~O!vt#2YdnM_|!?{?BFeMM)?{Tzc_YXC9=%|MbJV^O-)?STYD)M;B
zZ=dVRobbiC^!K2F_O+{I%}Y}o%Nij8T;D<Qf*bTvR|rQ7L!$#0+%1?zp?oKLpg``d
ztcOnwGx&7lLMnc91#L%rs)%^d8U?kL%dos5G+^TQ<L;tgzC+Z=%bu|c*7&VYWi!&`
zkPPF=ZBnr-#xqU?oVGwV_Ei`=J(O*j1tCl!d?F=_U5QSmOSV29BBnS+)t(N=Z_-hB
zwvk=)bq%7y^p3q{9gh)V{Z;5uHEPE#tPQ$z@bxMoahfR_1sR!5;KsF!PQwRmCLDH0
zWk+5xE>>8VF+QvF(mh2)K{IE3&E_mvlma{f-_ZB9MXghBEYG88z+`@Ro#M)`>5VCM
z7~T(t`u#?WfzWf+i~wHPG?4X86eWW`-1Bh3*ISO8SDkv(&m{GuI9oyvPMwr-m5X0h
zL>J;3SD2{p|6({fY>2RzOJI$ETHuyq&~vlwHR+3S6TF!$j7Z*F{7jBiSqNzcoctrt
z)1$v;$EdVay7zw<0uiTjU8=%^<VFiR3qVP#>nm8VI(u-_Z=kPH@M`*k-H;SYKra4y
z(wm+J*@tB!N5`(NNAiVFELo9!&c<h_QFj{r$1Fr#<}qK35ZW$%_;-u2O$z7SP|V>B
z*W5fnrMj1>;#AQ|Z&k-78Ed;W^M#4NF)>Dye#?7^50tO<C>)W03*-wo03tu1^w9<z
zrj+ZwHST8lR0-}X|I$Ca^8C9yqJq^H5#ZM$h9k>q3_lL5s<^|(QZCzaPs0QA9W>hU
zJE2(!zImH<jgC02j*opY*3v#mmBma{UotV+Cw%r^T8*H5e2ckEx$%$%xM21y!4HC6
z{CEXxN7EuCEMsGidydx|St(+`9yLY5ezJ_&+FB>QKsXSC^&zKuz4#HurIqDdoC%fn
z^##&2Ba4|*xT?X}cLs$nKQ7<D$M1pQ1p#S_m|zWAWtY@WJSlS%d~jsaZDT8Bqj7xH
zn(Y`JX+C7hB7Jr=BLfUDPOViY<&U8vf0Dp`<}c>|dkbK8=oez#a&ikK<$B5oh5nQr
zT&Xi<vOzX!ZAm2H#$z$_eC(LYXq}-+m!m^BN@#gg$rqxg{8S6biA9?@sEUU|ymw{Q
zgmTBd+Ph3iIy22674OSP8mzC8%5jmDpbKK8yw4#PM^6-ckD72IZHUF|bf7ScmRQiW
z8quE7yZFkF##ony(OYwsgV>>wn47atG#%1SndbMRAXrf^5d^wkzgHUk7b8zoF2TJ}
z`G{C~#T}JKb{nevg5kn#A&yY2GStgQiVq+KD(-lcg=msjs@Qki3v$UnN}!TS-UM!#
z*I#nwaXa1H^J)2dEiI?R5AUFKA$-sck?I}qiJU!j%LtH*s$@7^7O28KN+~@kP2VAP
zrNldDf`a*T;CGY}N#!VwMf4k+odd^Hy$BU+=$V$s9XyoR120%qCUDJpbsAO+M9a4b
z*cJ9J9?LGy41vA0(}so_Nx+iA)%YL1C181+;m~(xOe3xvx1uv-xgoZBITb?wr|H_y
zYSLzFAi4rkY4LmHz}Y{;A+a%e-1iJaX3<hB?zae+F3e9}csF~nftVwCirv0oJcWeo
zl+XTGP46h8r*){*s8zH_`nWKg%R@okXyFb-`DNWyUwgar0t|(ZIds08oq%ny>lXca
zt*)3Gvxt||YlaU#)aH*4weH#tD?R2plU~0|76(G8v?Iq?T$$ro&42Y7RsS#pG4|nw
zd{(ceugW(5p;ouup*?9g=y>RLd1cgRn;h*By?}D8)J-{MyeK_cSy?IRr_(E8*bmCM
zv*r+cR{1U`-#~0@vThiE5apUn9DH!+z&feSJn=`g!@@Z4;xYHAt%GBDv6l%m@~>^v
zs85jnlMn`<u%TQLp*cHRT(KCY9r+n9gWbn%g;Kb}ZFK!&nqxNzG69XOcH|=Zmh+a$
zpaMHVF8CwcRjLZ|vUq7Cj}#lI@i@$RG>u`q{<dtVTT<Np>oUML%-dVD0`dE@m2KqT
z^t=j}yogAq3uJ{rAw}4}i4;P>n#qtSjei0yc`_6!&yhTff@*ZsGCF!d_-sz!E5JfM
zPD(-%(j*mizk?wm?pC9Ace4;56xUa@)hGGG@6URK@aIhK`Z;?rQy!3Dom*W}-Rv8D
z`E!ig?26U3mn+K8k_x{7zZ_L*FrnkH?Of1$w}WZ%_3a-T5n+-~r8wYa2?_XA7eCZf
zznh4w6dtaXrk!C{mvP~Si+!E?9y}z-h9n<r6zcc;vvOMT_kt`$Urc+qe+LkfYU9N@
zm0!kyFFY`E8@b@$l;pw)!qzg(^^9({CcVhK*+YbY{v^w8*-2N@ng*(C5#Y`S<OGmu
zQ_vY=244gTzA+dV$$Auimbu9PWv&DMJ*ox{IIfF5#@-?0dTTbhCDtEmKa^9yi7LK|
zY2V(+-p<Y3=sEC0M<|0Y9Hw{aB0guRPfn)Sln}KhU%LSQ!UO6rVK@x3o<^K)T2e5O
z6_A<hrNas&x8H#B+vl7ZeP!GoO{*8{-+GZ5loBsZf}gMy<9m2GBl>r^0zD!$yOWFa
zs^V##Ru*nU@Fpic2Bex4SEJ3Z6c;mfkqN4hQ#C3T*Lp48l(s^2oFRaj{*jxtT?s34
z9RAii0e_Z&2K{~Nh;fpfbC#I$Z&|Y#+1ME*-m%%Z@LG)8E8fa!v`Hz&WRK$G+SU{7
zZJ|lz?a2bE-NY#xs3^vSCX3_R8uGRhlQQ864-E3mD?B@N!D7D)h|g+c4*itc$S@ye
zuDuiCqkyu9kXN|s46&K875~=epDLP_%QSSTqD5*0=lTMUpk6A_Cdu7Od3;r+?yrL%
z8(edD)k7urpToFuwGE6Ox|`9`^)_2yX9Th}P3#8V>h;T{trMUFt8fJIsk90W?k0w<
zHS8yhaF{*3s{@vd02f;>dVqnbn92XoUGAdboCtf6#-}Kk=9x2oGtBu2^x%!U4F^V^
zc=?zZ-L95P<(U`nfNvhQr~aDU_X7l29RWt$l0nJSpNtlQ1mV{pCO$T2B@Bxy=ONv|
zuCE8Cp4g-N>bPbp5K-Q7ZSW`$uv#N;wpew5c*Un0gskA9Wd40&)q@iFJ9--xw018_
zSn$ko!&d?+G(W7?L8|PD8L}(q%WQ%Mr0u10KA8Dw2tx&M7mKmiuc7k?E2r-BuleJg
zoNu!sQZqJW1?0$W4?R-`KAZ^-m7cfEE5NbSCcn^+qT*_u6;?V@0IGS>#{3@O1Oe;K
z(g_Hy0wh#mNJ>YCYby4T*hCe1mi!L>i{D|}ckKA{gcWE0O^)XFzADSno|QU|pVQjh
zI|g-JNh*Knr)M#i=|<N(mcaT51e}OQpm4e}*XD=e&+#|vuIDhCY%prvc~R@zZa6Az
z@cKJf%YJI^Kn<lo=ggfQH=V^Ig~rqCLUMsSu16UgQ=MmKTg(}K5r2iQmzT)xwCx5J
zwyx?V)bK0#HSWsQ7km_dlvhWClo0BcmvLEcfYJauV$6mOyF~vn3i2vaoA?F=U|WHb
zL}zBQ8~ftM$9}s0B$R;VZ>L4D{!ZA&S9=*CdA^A<IcktNKoLaL?}om<ku(9>=3QN{
zTW#M7`u(RTyHzAEOq@A~y&Ct!9o~sxoiJt2h`w6;1NZC2;Gg+c%w`43zSiAxuz5q!
zV!jkHgRC2t(Adn6y?m-OBsB`8d&V?od9|O(gH1ejfLgnC5U%$K^(w|~5fzrJL$GEr
z<=am&yt!=%r|Zy98PfGeYG6?;3k;UCh(6gkt`9vj>`4%mqa_#ddVjYg`xR<iH9Gvg
ziOls!<@y$J7;E9t(A-|Mte64dtZR3gF4=A^GJFSuH%AfbUBgTH+y7G6-k);Rz~6Kb
zQP)ZpmoUA9I4)c}bLjZSi=rv54&XIF<e#GYHC``^>Giqr30GF<ZtLHlbM62_)#$Lh
z>(+F0meSvL%AR^B<P{+4Nppv>vl{S=C(Hf1EIR>1m3CuG?O;SKAgN-u{Ug6q-Szb+
z_-nG%mcQRL+H9Fm11|;wcE_Zp*)BqhH9Sg^8-d)S@bOwI)2@X>n}xvVWkT6=)}6@(
zE578W?t6&#qThP@hl3n*fcHH5aNuvy6+=#5?2;OtB%S%A7j@crU1{G&A$ZckJr7<L
z60mXidDpJW(B=M50WBFoMqml~?FrF(2w_v5>hv&qVgOR*460M+<8PN1R3<p0{kY?x
zcE+xr$G=zd*YaxK>`cK2J;}Pn%>b<}+Ens{e1wV|l2kphD&q#+w+m%w#)C?P4a;xe
zQrgHozr8g%Ci;g1yW0E5s(DH)>IUeeYwD8LHxKZ@-NTYtnIhrC9kau1KWQ0@eUU@M
z&UZnjYGEV8mkNa6?}&XRc(k+B9#Z&)SrlXufz9LMV52&vexlC6wbjL7do8o8Gqi$O
zdgkD%fwq<VrLd_sduw%$c8)MAh+^R^^TWY3HydJb!YH!{=r7<EJ^1_dn>2w#IV-^|
z#Cvk6uhKzFHGAICCW_-Z6ceudLV9FH&b|d>NjDB*ufoGRm8>36LYp4&?=9^W0Oi(K
z2y~@et7%(B6L(IPerfeFy?6T7Y`P|`A5}a7Z~CX|eqEpDZ5ox^K#0n3opPz4f-(JK
z7&HB8*dY^7!jZvq-BE%t*ZHXR?RV}E|4DdHuCm_u9K3I!EgDi4Zt6Cn`$H{5-qLU=
zI61c@<;cR+TMkJ%!p68KN%E6xW+qmYa2w0rEdnm%W#0YL;{|s8&alOVE<)g4&1u9*
zF?3S4Ri*D@nrWD`hR&QbZkcGaS6-bJpAe&hD&`B}-cDF&AiRZZ?&}rM0oR<;GcN@<
zeT$V`XW#)%)$xK`OZ88CqG^|pWo}{D_P%4MhW7~(i}#nBG>Gpeuh+>`#q^I*HhQQy
z_VvXD^z@AO5bB=0PHr|+)_v)jom%bo2X3jk@&Y&CSWJohNvM_$OIpgZJb5}^v7j?E
zTAjeN(k6}QzL}OM|D^iw3K%GGl}u4!vs_XGYSu20`C31+iuEL12+R>c;YXb2M6n=r
zfx>OGtzy6iQFo!Z{{rCY*76LIU&5#lNgdNy*lhis{yUrar@FQ4w}9~N`Xi^sYen+j
z2IFDuU5z$S$Lwxbudw`}j!_>42OR~DqvW*bK)vsI7|aj*Bf_|>liod~I<As%gXOF8
zo+-up-h$ykaT}T&_I3gau_0FNPonF(cKGs37Njv^-geBDw#~gtX{o4+Yxj@RPivRK
zpr%(#DQsf=b_ldn)p0sdXu52CjdgiI8c}Pg(SkS2APHfb;uDTjuGAUj@T=5QFAn(3
z+<(7u<wDMvI%!$ej}B!;2h{Sgbc2SE?Zu1J_4_0006(z1QdVVyx8`y_;DrcTb#Tv9
z=U$;r`(jJW>EfNsjm83P&r>1&t^Xb^%^O`U{q2)7F^LpNOA=*r{!-9w=Th8_%8O(i
zvCX#JL1}Mh$5q$;meNW3lj_@2782N}>ucsaI-}X44<vtUdPZ}$tsx;GG<(=HB`bKy
zFg6En;1KN(_(0FQEP#yq(ahgrC7Ygm{U(uLnW{#l3pbC#Chc6(aBe4ipEf*t@S!2=
z%1`&;A(PdE&V+zaulm5$+k3Q!w}lKUH<Y)yqC<HSdX>IRh=u9Rqt7SqL{6S}J3ii~
zeIDLm6NKUQnwxT8Y4e5g<?QBv>1%u1eeDt5<Ay&0MlwAuh&U$&H+#4Bq4lF<FSObX
zk6s!H)3jWdH6Td^6fM}TcM^Zd$V=~nG~F!26)$f42$vn?$S;|YMH>JwWT5et#;H(<
zEB-?--^YE3h9BWJ5xe&>8Y06L&oeZO>fOG>A~%#HaUuxCi!p()ZC@%factNxQQr@L
zPv4q5SqheY%3RLI3_Nl(ZOVG5$q+WR#9QN+rl!5Dp*u6<4)5<;7wRw=pup}_zhaF9
z({G7!VuSmL;zKHyj`ywW4<@_YdW=v1<ZL-G?r$}m)U;<np53n_Tn)@g2PQsW91@SP
zsbH;pbYXhq7PLLOpP@D<*VC60w=L-pgYHlNs<ZknF0ObW2+kH^wQ!}*rB<E305O+&
zQlu}FQ=Ln6$LEiJg7EjOG_+rw@5f%Ki6@Hy*ENm{xb(lr+6jb;FHByL65k;OI3F5e
zlqcnIy59WUBT#>I^1H_)>pQY-<&~592mQ<ugP(Rj&lz^7g_gui37~Q1eO(Jq6AoN;
zg?(eWE*W<_DlgKK&3>|QYi-Q@y@KD7a4a&GS4rJCmB%C+1Y30`Y$WL^<`vz%LNHQD
zg<_%I%MsuzXGT!4K7`@Oi6~P)ty(oqdH?yd+LCVnNRkGlkO@>IE&C3HC0zA*Tf^HE
zSK!g~U1!57yhU)$L7Gg#cS4tT3HRP0IMtxR$|8u77QK+^e56!+|2uC2%PFC5o|#~R
z_(lmdCV)V@$m1gA4mR9}2a#Y@*q3;j9~!X5GT`M;Ld+q8e#`2}>BY(r!{Oknp9sQu
zx<d^mt>XuvX4oVDvF$i(JtS3vSNfio%b%mzx$E#Kp}Wi-P9C$8WA3unBi(8)^Ogwf
z-byOu_Ri+uY4516fwsOHUmlr=sSLZjP)|t19aVmUq#H`AmYp=_>8$FF#;s2n=<93o
z8=WwkLEgpjle@D{ERC1Jb$KDfwfOWrX<K@op@jpPr?(XzJGLQQzdmvJkuu<^GNbf&
zV9P7T8>MCA-!6BbfVHQDn;^^L?_GZONZ$*XUWSVdSC;coy<H)vCZ)pnC#wDZ`Joa`
z+ZqLIH|nSMBV}}U^b$?b+xf{OWm8{LbL;JKl>JVN8EXNtLrvvp4F~~`9$|P%p=K54
zRQ)N7dE*pnD$Q@o`Z&;Pk4lXNJ*j8e@@>{Uz_q~LT4hZc?k_4UtyGG6)|5hqE!Fh^
z7wfrHD^x8J1ixqDc7`dN?ja=+3q=iN$9|kv8-pGkW6H6bNOT#Z^v{)|_@#*DJH1{v
zL150$XnJ()#>$8_?ManVt_O?X=wyg_W(rUgoNM{U(o%DlQQor%!SF(^<F>k=jW{wA
zr^b<_sdvoWpItDdk^I<bG;-8i4;slM0i&fQ=UyAv*#upBT=u#K!9ZLuLONLA9P`Xt
zYZIMWrAV}EyhamNoG_3>VD@SeCqa}(f9DynAEbXaF_O9tQ{<R0i#m9m8bp{{gqh6!
zz3}s`wBVnVam^S05<G=bDpjriUX7&C2Ik>FksSVc$GdJM<zgP-^xP`hizfu6Mt||C
zv~Fi{-;EG!8J|pn6zxlxd3y@L{cm~|!@)U+SRD1TY^V*@8(B}>wsLkY3DgK(FE(M{
z3K0Bzoxc`H4Y&aBM%E~PwgF|P)v&m?!BgEEEH=4tWr1snZi%vehS~$h@2NBGWqXyV
z;u~#P_X%|K9~c8U!ZrkueUX?F+PcFX{O9uxJ-Apu-J&2x_(>~0S%k03-}Wy+nzNPi
z=$E4#Lq+xS<tcw5LNN_^Au#o76sro^82Cm)byEBzJAeY>ND76u^bn1~4QN-U1L;4c
zY*b{Nwbuj`itI{OviSH((14Dz7@7ktnEAAC@GYsS$TRPr!fjgr4p2hnMq&OgBD41D
zrlRiG=8>;{P45HG3daSrbu3IH!16}BMu~PS+acf52>#=8CP0fFSjx?*GC2{jY~W5b
zMKR&!tBO(~&6&A!V%Tb?x%|SJk^Hvsl`DR#neW}GQ$I*ke5-(tYP{~}?K(M{zkDLw
zmZADRP2Si8F8M&o<+!_RL<`WHqbOW815Vt!>^cR#Pjm7M#Ju(<TBY}LKks5j*pM4j
z*Yyxjf(Z3q7XI@zK0HX{%fM!F+3&PX-Yc&Bs#^Y8kTL#hVe^`kV2*zoP(-l869rWY
zah3uRl(R%rIU!+LfWLw6Y*ZRaCEC3kwANsLa*YjQqJf+$Q~XW{O2q^=_WnGP<=Wrj
zF+Wn51+88B{KP?fHfR4$X9?T@4HeZkTMTB=`F6yX6o~i>_%=a1O-%`F#ab6LJsjNU
zbf|iLxNodw5bUYmOY11eV^-V;kN2y9R|vXe+i^)Ssq6Z;s^&72Yem?F;NK7M-;Y!M
zy4?cni>=BQ`X3ER$@Y>rlr!~HEw%_Bwm<4o>WltDShGNXTE8w}C4nxGSycN)S_+U{
z>v2-q?=>L5D{zttyw6L^tv6wPL#p~v*6pC)nl(GP$UQSbdezu(mQL>ZES*!G32{9E
zQ?Y)T8dx%Is81XLC$GzVNpDkZ26)epjXl7Uz#jj?`V~fpc^t_1U1+zi9Dt~i^c(tx
z-#x|mp|oF51!M!yi-81NQOcR;l>ygHE`XDpP1jW0)3|ya|Gv*(;*XoMytL4u0Y|K+
zl%qbj)E=kjMm3Ajg;q-0bS3oE6Dy5K^{EE+u?DN`<xjpgf3uZDK)EtJakfATfgGYt
zn<{*|i0rtOj$gfdMw~b<Q8uw`5oAQGX6&u_Q9zhdmSSwz-%R66+}!Q2X7JJCo3cqX
zrB<HCJt2*57H98!P0B{kIE<IcLv%D6w*3KtUKap*!JAXnSPEA3%7_!fNpkG7Ouex4
z?B~0-97b1(M*r=@O;)?mwoA(<`|?3i6f+{V7yS+-O3vP%3jR9oNBvmZH4Nflc}WD?
z6GU7nQ<~heoucptP<4p?NR&8nf!iVGw^;$c!#r0_ZDe%N?aFu9P06n~2rceq)HW(!
zGi;nJgdZap88#Wunr1L#wrb$5-nz1zVRM&2FN*hT5GC+IYan2wI<*ws@MGT(y}Xtg
z^&XO_`DoD*b}_y{z(Er4_*<$(ep7lvjA=jot$^J(W$C2reQ{e2BHrV15*OEji?Nme
zprU1Jg^ny4kS(l**$Bfs&3>>LEd|mm_%dJ;HlYi=-H(_*)MEMQljr`)YD53p57i*A
zWLa~tz)hZwq3JC5)StvQDZQ+vA%^(hmd?E|<Tn%TbsP=^-Dks0Si2#H>)EMcCZ8v}
zlv5iMhM7UP`8EnXlMe(^p1%XK;IJ0w7oj;k^b_=3a=9}^&nCQN$ZpLTj9b+R-2U92
zRpa~_zO58o8*xXzw{lz-vNW>gs=jLEeUD;s<*qrnOi~y~_#_|HS=sDFGW_fv^@aX+
z`(V&hRv<0qM6<N_tJxKApnV{q@EM;P@yxA7_Ih$A%Am|D$#UXm>*)j^Do${*zM>HE
zo2{=|^T_l>q=`^0-kr+41C~sT0jx`7d^S;j*V4Up5-}P6oZsZ*NemY;zLf#3?xiP1
zIIPNdr@fvftV#WP>qn|cA>XxxrBo(s_)3s7*A-{OdfBxfQ)%NDgI7~VD>kO0u`6R?
ztAmp}_A6{eUBAQJ_CpVkX6o|@wSYU)seRMkyV0+8xjv=RUk9!5?2^puD;u|3O;h!G
zRawi=;|FlL=0CpPu-l=AF#>2GhkJL0stkk?TAW}5uf?AeEXZ%Z`4(3WF5>cwnrZZ{
z6@$PS;fLRueqZ`~$v^Tq_(AKhFcSNxV*7+pjPS!0=|6`!%5VWb;Np7-1+(BE&3^;1
z3|0pWZ`BFt$;_kk$uJ132gXTbg-+~ow8;5eaTRc!^6q7?+LJL-iq5YqXK#`KJFhD(
zGFhg>DZ@Dj^d6Qj*MY`smf8Oy2K7Hmg~aohfS+>CS*Wua1$cwjwy*?42>kl()xddU
zv12o_hkTstKnRmWL0R4u=605C0fueVz#HW(KBBpQ5KhJ%e8{6vujYS{AZ(G(8sk~Z
zT^D`DaEd*-+_%NPm^-ik)#X6_x~Y(#S+TeV_XVbYKMLZr!wP`nd3GzK>fhSv20z^d
z(I1bTW6PWY-X>*AY_F)QyB}cHVd6*5l5@zb=X_v9vk=J-IQO*=o$N31l2Q-bu^65=
zo2ewQYz)8aTh1?QdJ6$_#*_OPATKHT856b{_+fR2bSVfuk3O=wK!2gM_&C9h2Y$Ao
zD9CLopa+wyHIO{yoeF}@T_bei)j8NMV$1sac)Dk~&FkgS6I<OYnAe)6SN=gF#hkI`
zS>67VrtHVn(y58$u0B`jQ)KgI&S5d~Kv}wqW$TILoUi(1Y)tz=x}095=Kmznp0(^0
zr@e!Uj2UBI;{+AGdjyH1Ifo@z8$z)zE+O8_oKDiwu&F%F_?LwSC{w@AMQA_B1^h^^
zx#T5|%)9b>hj07O$`e40Q0|N^=y2>9aO_a(1FQ71Q=TQS31A5TSfBLiWDKD<jG`RQ
z#@^J#uYN8)F*%@bQjE|C+xQiXl%JZ6efD_Z-!efjG%<OaQBas4pdEFNZU24M!sJEs
z&;y;ef}DY!EsV&Q+j3<IKqH^<f2@c#qZ{^7jvbYQvu|57;=+_*wUbPT=L=+((E*c)
zeTYBqv2Wc6z+n~E=ZNiZob{8&#nf48Ks{o^lx(B6&B}VyhBnS8P`~d-sp#aEfa~!<
zQ=%IYm#>H9;~BDZ6=7~Uu$;FWkA3!q#YaBZ9zq~&OS=9)@x?~xBHq4#a1FXWR;HBQ
zYU}O$eIvK`{IR|mp&i&r1G)(62RbK-$!BdP=eU>{{t>pdjDl#mOVHqdj6-23^53~|
zK)7qE@NW?2Lyx@~4V9To*+&Qq5;x!2JlB7*$7*0)&#lM2g#KvH2kj~<VgKq?0G!4{
zO!Q@-M|NuPq|zfP6KFU-U*ZM)re~rH2CczDl#8br0lI_EsUR-ky+smTj#2J7rt;e;
z&beIVxwt_<hxM19!?I=uki-d9!yce@xzgvS+g1Y;O_iqZez&6ppyY5j%ea0D{gV6K
zyZ}!f=t@!_Jc4?{88c~$sP6aLH<fy5u$ifya}$3Vn<bg(vV(HUA-V^;z<5wBg<~_9
zJRg0?x!bON0o11E`yGAa*m0-#94*p33SuTtbVF_c;&LEgMR+|=_%*%mr*o5L0*$|n
z5jKsaA6!3|6SAHXuLqRn1Jx(_h%!A)U(i2eq<>m<{0|D`ZLJ12a*^=BfAAuTxG67`
z-L!9Id_I<ZbN9|3(AvQb@~;k^@gBw$v`h4?y!@{X6$!kW?N@N19xEpM&MbzV<>O?(
z+tJ>)Tz0OCvuaTgO!Xjfm82}Wd+*g8&adY-7UZvniB|pa;10M_-&R2*yn?6m**Q!<
ze-;OMNi1=i7jcBh8rl)4<T;tJ{No2ELWvg>NOalcg<1`es^8xpE9K>0^>fxggPlEf
z+E_1Jk%^BcB9T7=|Cmt8zxcrPMqz~B)%V3nBeHh_Z!C$HFRBBdhzG9504<lf5n*(n
zRjCJXbq5TQD73t0S72_PJ`m9T`+or*C)R;P$`uq8NI=x8gLFkB1*E^KNZd{!&^2^a
zob+%g#CZ5W^%1{^4Ua!PPTuwF*CHNdh%M!5L)R{qoo+mOepWdI7Qp=cGsiRaDpCbZ
z6{#VOv(+u^xs=7^-$88epPCwnd=yXt8$nGd9<!8k4WJW8tj=dVNczly(aPiOZ>=Iv
zOXBH9f6>}@Il-Q`;Q!N=2dSSq?(ITn3PEd{#Qm+ep{Qr2oZaZBTK`G>2Y`ZEm6s*I
z;KHvest{}ZQR@JrH-BO1)}bZ7)$5cRB<7X_k8CI{v-}popCje>JguSBYXl-fU;*ZJ
z3y<uWe0yp44z3#S)bjN5a7gMx#%a|{Wr0KBU9+C{@1hfTuH&W>R`b#7`pK_J2DJ0R
zr<b4}>(7}2tnNQK6H^NV--{2+x5%nrsu=T%=O4EU-%a~9ba(}dZ|KkRr33W~<gf)W
z*f*3uruLDKzR3R;<I}ITTUW{O`7^@7rBHUNVf`R(nVXP6L27q6mS@K>O~zl9+A1w-
zC>5QgEB7S+R<3t?FiM)){&VJZKE6#g@T;C|P~NZ!+QsTyD{mGB=$R3z^24G+Y*72F
z7__l*bID3D!&RbeE5o#We{Z*@{To`~ovQ~PA<YOc^8v#_f&~z=?1;5CH4bQM<MkLB
zh7=V3ZBCvguplIr6sFA&g-<oH%uC7`hidcZ<-qB3;Gzob$ENFpN6v+ZaD({!{7yM=
zly3dHJ|)2vnt8JQ@$Y&+%Arqr&5Wh-4w0>0>fLY0<88aEC9Wh$W^MkBPhU}nQpQkg
zhYi@P8l8=rg1Jh{BuH)<eA}m2KsilsnZohLwBenqX&H735RB~Q*a^>Y82g|RE@-g@
z*eVv+9*A;91XAYbBp0$jRX|Bexl8#82gK-L`QtS&?7Qh^0bnm_6xns53Bb8&kGa?u
zM&B5H^(gH%4e0gu4vZt$#dy$Zj~GUA_vPHEQbta8ekahc6!f=r(nD&a;-)|-P(XP3
z>1r6l?<G$lcwv&1`R!*8kXg(<BunrOuQ?DkXNC_;BmAMUE>WiD9iBg?o%29=>Gk&e
z44S8QL?MmT_WCV62<a<zRqRD6Q2YHvUT&TD5>*$A1j_A~6<ng(6HXVDNkB03-dFe6
zUIw+@zK11(Ei!WvIoUj?w!QHIRo8CN6HY~myd3uyR>`p@N(6#^c&V-UVOSv{J6NXN
z_8kOdOT@Y5SWM<N41pPK#rD$b<-<Y9pPXi36N#oR;E4Yix<rYSp+tVw0&qJp`&D4?
zdD-6hed%?6VKUL?75n5quoOYQ=E2HHRk|$&7(HR)hu7QbAGlRy#rHQTlGmb%lt1oU
zgH~^K&f9Nf7_U(T|GG7pWRM!jyrIpHsIDf5xwwv3rx-juQvy-RrU$^TeNhE5u5XBl
zfqqP1Vem}VzT?H?&4!d%R-#41uj|ZO4ga9D);X4H^AE7tRZ3{JU?YK1y1onbY_3GJ
zOR{oSjA_W4$!UQ>Vo<}e;fd7<#ljWrW8yAgPwuc*R-3w&6=)lb?j4cFlkt>Q+8##U
z;sCub&94~^bDChTQ9@HQJ_OYIhgqVtWY+8x!!=EUk{8jxzGTRna3344AXF{@=)3`M
zH~L7$*t;`O2^l))ip?W>c9B5S3#@~|B&5E>1X$VV&YHm->RE5}`^{$%*-`-T95OFy
z0<5V1Rt6UmgOIyP2K#eLVdbB0Atqkj!_x0WJWt#u0Z9(u8k2e{b6EkKJ3LlI$wpBw
z)JnJMA~Gcja_3^?kLL{>Ox-%{CXFZ2Fw_o`d|ML&LbfXxOAX|?#l(3c-a(bczO(`X
zz1SnL?j|y?216v&eu+}PwcZpoHn>cxJEnh&3()H!S#`Ca&yPXLI)vqpUb*bPug%W@
zg<0R7K>h%IivwK%DZDpuD;t?6EeZ#O_cVV6%V`nnP(O0Ql&njD(YrPBAb?`y3KJN1
zbj-bV8D}tBeX;~{FNP1^8d=rdjn%2(1YTKr*Vev7bMH8jT)qkP$}hR}yp)d4fftCt
zK$6CzdkzND8IH2UAqQljN2$J#`&9WCZHc=8{uDozuIv;RN)&EccB07tZOQ}EO*&r4
zuQFb5YUFnME*q&!;c=7EA_dGtJ>vLR*L)#h`jDaN>gk1|Hulz~;NnQ&+`UK0lWrzx
z^Ba1A$$uE#LhoKBb-4`Lm8P(L<j0)AaV>!agj7@y{d+e-yo^bvzAcz=m{?vS@dMQH
z&qTT?e>@;ng@iu-hFG}(v1~X2HlcIAOH$s&PyQibu9_dtq4qBS{5D$mLC3RPgmAE|
z<GHdNX{)Y)41NWKS&arH9_|E2U)S3p1B0GLaLxMw*XJFl%86rPXy|2*kcp1o)VdF^
zNme)s(&6UvZe1gNY)AoIHJ=eQ{iJHsM#g)^g@vXGMkn>JNVA**tXd7GnPI%|hn|JD
z!hPTGRsx5cRA;jArOn+RD|oIXXep=2zR=tg<VF0{T?$xG3=9uJQA`;1J~P&q*FOAh
zEc7b<7S0k@#u<(dYqSjx@iC+l1z{N|*Zz;Dw+?9f`~Jr%L0%T2grqn?x};MDVWc1%
z9n#$$Lor~|-5}jDx<Q2@IR$AL!jPc@=BNQ1@Eh;X@B0V;u;+8nd++nyb06n%9_K8Q
zzin+Ogebo5EDNcr8S5b_A)NRGj~~-2H<nEP3qH6eA@-^K>dkAy8#ZiEjRSy!_o(b-
zvYREeApw_i7_!4h_DT@Ws7dxDX8@jrt|*~@Rqd<?3$DD`P4!O~kJhyi-sjR^Vc|DP
zd5k#q<9J`sydD1^#^*o<jVmWe*7V|P1vw=tj+hO3T0N7}GEUN94@p%jAJQc_2YRJB
z2ei(VRC&)WN!Qvs{J(1lRQ3^(i(=*M-3T(WY}f?2r@oHKW->&n)Qx0-Wa5%nTho`+
z^}qxNL1>0r%^w9TLQC)b3!GkT>R}=Iu#fL@`bSW*fmTr_t}P9i+M1e%)Txv!H%KO&
zd}TxZ4{C_5%|XmuSw_dH5E(KuhcT9<wRv+{cO{6i_8&#xt27x)&ef$&*C(7?;oaUT
z>;0E~cPd}1%#-$jMf`}Ax&3O^%8W6p7uZe5Dl$g8;s1Q5Yj}ZA00{-GEy8OXFnOjf
z-#(R-KJ@p`_vy`gm@p!xauqO&^IT2B@W*W-dlOt_eV@$vWpJB~_UH)--X`;wDomN8
zaD7G}hpy0+Dc#kzR(jDB)(FjD(sbV{#-J_-{L#L5j7ddFwoE)vDzLZ{J*)XU?LX@=
zXVW3<q`Ma0T@AlMBIuqs0qcpWN^dT@GOkYsthADM_=o|-)BxT)30Hg5R{rXZQjtJR
zZH<DKT(cfCtIRn*sQ7BwX{35)_(lxvNT;i$!Bz+{a077_3s3_{=3OB`8oP$oJX;%W
zY!vphjIBYk;b&4Dc$O~V)VE@%1WC(2nK545>G8Y*wBi(3vyh;Fji~x?u$*}b0mn6x
zX6Qx=RdkKwN0Jy4J(qETOCd^s4oG7nqa^e&-X=@)&-GCwy-4r2mz@omI3w*A#!%Ju
z5Qw&y*&tI%!3u<U`hY3=nA24vm?P?bQEoVCZ(YHo0zzfnF#MRvHFUHvG>@UXL>^Vl
zQvDLec`R&kdJJ5e7#356nP@L!<Mm`*`wj=tCBb(s<d7SyJ=J-hLas7+kBtzbGs@Ri
zxBwrjI2FMev%jEp*mJ560$sYIE06~>^EqglsEfAse0<Q(D~Wl+-03#t&M{XgzN4t`
z{I=yV`vh^o`Nv*hqZIa}*uPQbxYx~UxTW^vz-1$v=_VSyLa-@7W9(rKd%^gZ&Nq3s
zq!|rD5bg8*rw0Vf!o?%1L~^q2N97T~>pKIDn6ugTOGAO*dLU3^S_49g9J)Siix;Qv
zieaOE)E;>6NtMA5_!sqU&VtdAS5!&Ij153GfG1_y<mRE<+si~wb)R+nHFR?W2D#-2
z+xDYFynidgILYb9ieJIvgiU87O|%7QRgZ^rDZbJ>U{$zef%~Dl_?!@d?^9N(a1=Vw
zs>p-DMLOzlkz-Rue<s1Hgbk;af<V|`{lnRvk(FG00C0Q52BOl_Trk!C^~p1~;Lhx?
zgu0i&CS|V3Bx$dWeB#!{n!dCC%2XVe1>N4vQ9XKYX={=zJQsa#P=sUH;_V-g>DaJf
zT|)0-{X=Q$Ka*h>1se$S&Ot4%kX<x8S*NDJ@2brO*Vi+|VBpBiH}l@?ckztv7_=L8
zubxhu(O678YH2X$<lOAds+lVjERQgdz8_kK`Ej-&92-#6rEAUZy@qsv>}?U9EPFW<
zF^~4Xim{FaC#fnR-WF3-l>!xFT2A}-c;Fnnguh8;{vlagp&{KL2&p5E${i1(p6(Kf
z<9_Yw7CikUkvbd?Z+d=2Kf)oca~D_RI<`JN>!0x^FxVsOGzLbqr-PNY?mrvh>K}^m
zH9~crh~_6gzPuD>^6!Wp&xc1UZ03hBM(K(qX3D8pmlU9P;4M8+g8%l(oM##V=>!bp
z-03y*+r)eLuOf1N5qBFV*Z4^C;K3q@z8te6b`N?fDr9f=>w%eYp-i0oq}Nf)w*aoM
zhQtdo2|DZ55;y)I=%kt&6-~AQ7$qVGM%jH!u#S(_zJ5bRDUR^(*-FeaYiyqdg7S$=
zcU*LlcVFX&Ua{MysoLQ-h23H%yOr<m4ESgCRb^+-e!zU|yM0)#cU)ETHz@`Ar(<^{
z8}H9g{w;$4N&FwAdRy<EheKS)_7DQ^R(mPm_(;jNSp+jO;qj$vEOwpCJz=<2!9TG@
z-*U@prShes*lOrO8B_WzK?UDAF+;2Hs~L9;bZ|v@`|E8g_b}IgRt-o^(qzMHlMZd@
zHYv5R+-N`yH8{s&TV(AR#!7}i;q8SBIg{8OcHL;c)B-R52s?B@RbE<~rp3cvbnJZ<
zP-gU^DQ31B{(x-*x)f-9uHG3`jeVU$@Oy9P;g|n!G%9o>sz{y_and{ZamXo6wqR(#
zdg@@A>XVqE-V>z~8qa2fAuekJz?+RnG93}@VZ!s!k%;^S#UKzY`!B+I#?>+@XiB2|
z^j}5yjWM`qo%v9QO3+5#%g90wJzjbTS3Y8)XIhe`PHP4U{LQ2o{zg|cVEA`$CL+ts
zA_t{Z4%{@<P|t3LRrYHw-jWk>+n8Bgmuq{!<EaJD?y^wyMEh`YCf&<+HZ35VM6&|e
zI>qMsQKUW^Zoel;el20-O?4N@?D%McY5I;xiRx;-Ly>^><yV&R@(~W6;&ar^4GB--
ztyKo*Vr&)9nHMz<rYC*ln{%N>onb`d^2uC&|IDgjKy5?kv2jOg<W|!jE_C~y*p+AI
zU}bFYHz#-46;&~P=6&wb5i~dH*<r`#qfjsiQ!=Bn-eNg~X!UH1G(BeYEl@FVAvOKG
z&1)t+GePmVBM_^D%5)re*$t!@=`Q?RJsZ8(f(^alfdV%pR?sv|KZ5CKMT?vtV?9x~
z`$lwlI1fa(Z2ZHD+C8yMhPc0pbJ04SEx|<=a3A3%(v;-+Cw4@X|48ceIwPD|be7_L
zr){z3SED4Sw;W^HIck&pZnFQ~YDW|jZ5rY6*3*A>g@Cn_2+T|?oNDNAxyDOanWN6U
zc##{F%Tv8^KoR{Q0}%H++w5NV2>bKF=gD4g?34;|JNaKjlpZe9nr2TqrO6v(mcfei
zDIpiJQ_A8U5@*)N!GG)j8mtI;#^uN_CHe1rCDN?9ikvuZ)L(1a8OdK<c{dC_nPW(e
z-1F-$yVaD#W9GC6+#*CKsqQ_zIvyW9#Qi4uT<ayWAw;N=MKle2PX1m6qld-VCR&_N
zx#hoRIKb1Z=d94K@ntS}A3+rmlm)T;l?eYTp}jGkG!^dVN`5j^x4IE8NcyH45|B}W
zyfD5orcIPTj=#n^4fHZK(wOOCH&-99n2=YQiuh_cTkSw7!?2-Nl5Rjp@@4WgxBL*A
zl7lh&8Nb^)#^n>jmz-Fg#E{ZlOotJD20i4*E!aJqz#2k?sV(n$D@KGg?B`5kXYpB)
zYa(6E<`KIhK3TRkQ&cW{pWAzOhRH(q@#<)W2|p9dJKc`jkujRn)yHjz98Y)qoX|%%
zCz^hL6%AVxnF`4**Z_|9M0RYB-A^(R3P~bU?98z2uXuknBk!d(I-TP${5yhu=x9}e
zspHdT<#Lb;|1+qJY7r_FaC#9=L$Bj+on5aF%936kq4AVnr)3`p46P7RPv_%|ie|51
zVgxG);`O(CFOc8IYF@9r$XbwQ^+{agtw8F2og%UVjpvtuVTwkz8Cg$(2wGN3jB$?n
zIEAi7KXH;O@qKu}-gw&%STT{ifaH%dB{{J@Mow1qSx}U(NdIeW-J>p|%I=4Bkl4^L
zyEhbQ6TZCHi5()(RKTvD<=-sMu?birviPqxuBO|*WNMjSH0~;^5nWaQ9ie+*=v2hB
zr51A%td4&~LCu;5tDC+w>xskj-ca)5rCe)33GiJE1)lIM95U~ET?2_x)2$`6iK_K_
z1<iLODja{$B975U<%t8@>`6B2It~3tR?1av-obL;&0qPQK3jU<DP0&BrI|XODkSTb
zzS&$NH+YvZ3UVyGG?o)e>;D59m={B2HL?1Qm)$DS;q+gbBmCcBgxu+}+E|h^bd49S
zdQ+rtMOdV16QQHq_Zz>;B$f(y(uOy*(co@ZT0<auVB`0D55nnN4WVw3#8e~(jvCxi
zXTavBjbr_rrpF-eC%vAj<9$G0p?FGN5gdA#D)E&U;6gmqH>sgMa@&5X^UD(a6^&5+
z;ZMx}|Mb#~K}V~30mn-e+S-Y@qqUc;g==anEJ6uT32j^`rTuG3X*d2uv*ymQTiqbp
ze-B(7K7kSFsNB?NMd3(*u2E7y*!a%hHc!)$AKF4@WNRIwlI`8g)_@B+)$y4rn@h>y
zT|h^pr*$}1p4HrH9u3{q%i5XXW33Pr{O=<Si4Abf_&FcJm4DRc3%+_efF(0Ws@WEE
zpIf+tYluz*Z^~c%C$@&+?wUb6$sPz%IIap3)Cg>^+-$t^6kdp${TWG4ny^{miNsoH
zJ`63%vC`mkZ!Jz5%;~Z_f-a(%g#?v~$fT8){DLP&#+a050rajMR$;u=uq=#{Pmf5<
zD=RAU)i+ISfdv(5_GCW8PtRF9f)rj`2>0I<p29oRs^U{mr0%fp)=3KCB1qA+#ztZ=
z%GWf<)Zv6@-C4-pqYp;iQG0Xw<RvKPrHf7N5@PC@FTL}c=a-~~$*tRfi@K*h#W>)+
z+0_iW8JHz&GRydgH~)nn^S_vU|Hp0F{gz-2S#OYy$8K)}1}~-Pw57L!P}}HwRQ%hQ
zA&O6!!i^OXALsHpLxl9*h0X$XF*T6}ehTj$u7}|ppo<ztS)?u+y@|NX1!KbEWHF56
zCHK0sGegwey4XFM4qlS?fTu_gPI~c*4`D|ad?)?lVdEa#9Qj%F6Jchc*|;!D5a@h?
z*aHF;3`K>@?~8U;bR%l%qf{}xIDRwX+e;$dU3@rnfGACmq}jY<6)wc7c>pI@rzXr<
z06Ymzorf33&48avKnTd~jCwxfT{NGaDE>UhPNO84ftn@lT@ioUNz3gKgGIVad|Qz+
z84K|FB9UZ2G&!a+1C{B1IjxvKRf{0$pU!5mJgo_rse`DE$Ckm-j09XI?ip2oMf3PB
z+Gy;Q4zES!(=r~~;i(3R3*xZoX?zbhzUQ8J8EVYTR-$Zv5UNjI<EPeN8*Z+^sT=a9
z3P|i~z?}I}j5I%Dtfv0nKcKQ2=Dk`T>U}P>H!oo!_4vv0Ayb`)$V1p~x2pC`QuM1;
z!x`qHbbFjB?l~9#LU$EMxJ(pe;OLS>g6Vs*FU2bhVNYq=?Ar}+Vr{6dzljT9FR1p$
zA3&nQ8&!k!3)jxjF!sl6O@F&Nd%9<r-v}lmrO};BGE?;TQjbwc6?PmF8K*8YJIZ3|
zfy_7mVj!FO@6X)jJp41BPexxM7QHr3a;rbv5dXFiQ7F@%`Ci4${IP}7*`XxSU}&ul
z34p!PV0iNUwOf_daJ>y<np&csdiXqF=3~a3aVutDyU%!WrZM<Ua4(xnYTDu)Mu7tC
z>Z!J&U^CJdHR~#p9eS?+!TevD>^$rlP8Bzwr`Pyu<s|`U=|Y+F()8Ww3+>Q#>m9_m
zS+XVk{BS0=@sbxZjFZKq2T<~IhiDfH*|)s!{xvNqXTd@;XZ<k6Ygx1R@y;LuiyAoE
z3r=ww3H|=;o7Nyf{LOGe(9JW~<+9O`#t#1(G~>c2zb)m<f=f>i=*ic1D1&{{vScfs
zkdFYikYmoX*&=c`yN$*$@0=s>p{@QCJMGJCh8qg)5~Lm!7L7$sZ}#|b1qCVJ<hQ7~
z*?uY5aR8*+yP<g&sD%2xq}cad0dO{ZzE?7N<%qxCDy%q`iYh|ls)IeT0IvpcYsW6Z
z;G=}p$K<wr+5&n4@cwg&=b<AfeXRWx=Ma4bv7VEE>CMSW5%3DcdEOA=mqayrs*_!A
z$c{H$babf;ViQKRtmYj+g%C0opl*9J@9ZHpsvC<w>_ElHs4XYv?Vdtxy;TI~L3rk2
z&U1_JAH$urY&H~&e3SNu&s7hV75*xZ7BOJa5^$6m9{1=V&Wd*u#&plcYDQlBzLb9X
z-#=-?a-PCA8+d$o@^om&9cAl3_m8@A4msB5M&g5<eLXAxod)4x*zAc|`^8jc^xD4z
z{JmON_*NzBLBcInO~y2N%%2tyH$UudJocDMWlld+1{}BWJ$p*hZlfT3-W2yw(#ib?
zbXXqI4By7Zb7B-OCFXi)$rfI0*apW=w@0P03+D$GtqmPCSGPQ%iJ^bQ8b(KyIF*Xj
zm)lZ3yX}K7uH^oUCQp1hjhKmucUNApQ;)bPrp&S8`fyek9C3WJR9KEL62Eug_)TK)
z`VGF)_{EdGT&&oiCB7(CXDQCC!vhjyY|tKCR^)^eT3_)f!4JjIsGzd*UQVOc??miL
zq}i$5#&JNqh8Ngw$Q=2`X6wc~#`Mo?8vF<O5-ILhg0R}ikv9Iav6<S<drou(+P7)x
zv!g=K9ls@HKIF5_gl&v7#`<4K{F6qq$??rCDfIvA$bU&jwt_;JF-irvH$H%14WO#w
zqqz)Ah+N5{$c%?bb*p)7-WuCL)T0>aB9VsHQK@lbNw;A${3TCM1BRKDoms%$M-D}e
zKQ0*Q!}By8+5WD`YaTTWIx%A(`JVf}{w4nR-bSdLvHV`e@Aag~NQLiM_o67oM(`cn
zsvM`=kF;>dgpnAp-Pti>ze9nLEfwsWazM1*jLN!3{4<&yA(?|;-3@C)CkMN911%_9
zSK7BpE^vJ@)LBKx40H`=4+3FZqUISbgZEAkNehw}lQ^vV3eq+i+~Zk~oPg$a!3hsg
zj!95w@J#=O!|T&;)^_fu+X`%*x4;Lhp|caac@l#!d>i$Z)&bQVm}e?=O{qR?YwY{?
z*8<=f&)RRVgw0ftC@B`LN^k$Q=NLAww9UHDQ^k@WEL`7uijDkdJ;dEfYuwA;6cY&c
zGhI`~^HD^l?d@{V-WPkA+&vjg`2ACLS-T)9g(@WLx<g?+U9wm2vC5)eyw!)Q%z%5N
zDsQiOdBt&0CHV?3PPLxi2R%Q^#XMkA#4;f8b?CpJ?+V?eP*jY&w)WsL_8_e|^~s)}
zdy3OH92&#h_BLFtXWivHEYfn`gmQ#KCXmy9=?V5!UwCU)ZNTra?3Y$hm`7qbJ?vx9
zn-EE;N-z|0X!n|Mwl=C-lo6L;@{BL5FA4v{g|_&i2VV_OwOiFKb9;A2H-qQ#tX3l*
z7K@Q>v+cn4E9fex2_$cak@!c+VCiM6-ke&AXiq#8#lrK#a5wd+zqtQxYm4?rR|Z<e
zj3~|<rv3MYk`a9k3Tf-WYch&GEH*bgZ@78Cv)a|cg}q)4#oCYTZiBvWT(H~WL;MZ;
zbuKto9xQ=ale|Yl*qOL%5H~Yor}^H-8~(<LDWDJ!($q5xe-Q*_*b`(%IOO)4plK4!
z4{KG0#EWkJt3BqMrZ{YHQ<W{CdY$zWn&v6ErM`$iO1X920eZ{i8E;7|l)JHl!Ji{U
z$`BQB4GJ#>{6z92+nyx|bS$L{laBunX%fHsSc~nx1oI?kNq@_EO84sTlszoKh?bY~
znxJ_flAoTq?QcRjwM?@s*+<0DjOp6Mccpz$>`QR|Qiko)cfBZPdV9O=bV=VB|4qf2
zANDfbXd}CsSvS$d=$frtGlS`KtA)gC^`u(b8_&f3VPvxE6gC#C&Z%si8)ou9pRQb}
zn{zwL<&3fW{ObG~xm45t66mMM^$6#D=qAxoa~@z3(w7?sDvG&DqM}b)%sPr|{<GE<
zpf7VDoK&yp<-b30U$OXDl#-7V>pjD1O#)IkxtRhbgT`!h9lodCTge{VE3Q^Z3X)HI
zY)jUF1zSdTz!oazi2x1p-NkxZ%#qq>bs7JecFo-J(~pve{FF$|MiEPI-WG<*GA7ME
z$?wsl=GwjnPXW!2tu+co-$ImXmkhvhcD8cQga`F5R;|w$8F0gDqq#aB65*0<?(DuX
zu+(qM1c*`Gly5>aV$?V_+GaTN)MEntIWmr*AeDI-k#7J`)$sd5$7b=oQKkbr<y3Mw
zl>DCWz5(Cpi6|}~B0t!;BsY2mdvBIv%ihf`)Ki(~j1-p-uJRT9o4M~o7V+I*ybWQ>
z#WMB(v;ee!hx3E812v-Iwff_YW^KY2o$bSG+q)@2^iTdgV4!L<UU~soak_@#>yq=!
zB4>!Y%`1CH&|NoY(cGOaC$5R%r)`BDrO`3PN*%nUVCdjMs!8TgyC6SW)q1%G2_|YA
z-J|}b_tQILze@S9$<8uW6nb>lc78DP=ewu*2LvF$P4Ar(!1K+M65f-U>7ukKp=mPI
zHl5}nd(KQsh^sZT_&5r0Tk7$4(gAOoG5&bFkTY52l=5%pBe~D<yE=sJjA|IstcdiN
z_Pw2$>mEHyVWr*_I!9}Y%V*)C^Xnbtm}iw_J~7xjB(iYhG$n`0c&-<~!~>NxsM=YQ
zoJIC_-8E@iG719xq~~GVYEadf8=;W?+|L`!%R}I-;GD17GCg13xk;Qh*PQRvM(ZH-
z)4JIMCVA*L+sTF2#dzDrV<bi{0sJoDAGG$RuriY0`<6xWGJ+t8c}`D0h;TYHo6i7I
zXr}auq|Q6jl}uxKR&gMo{ur6A_U*Cy@0>c@Rp241@xXOCN9q+2VKg}Z=aQ2i3RgE)
zu9mtP943u^S2RZ&mp@l{A)>hEDT&h?)<z=AC_d}?#XX|^Jj&Ch<eB!{LFG{k6RpD{
zj9|t`Y^DAfEb=OCSs2b9{7t|4ilAalq30f8{iKTp+x;q#?#$6{{0CbdqIwm?vyg7K
zXVe63>&kbf`1O|RDc=M4SAQe6o^;DX?ZrkXPn)N3WqW_LYR0vjRb)707Dshux}euO
z7x|0sB%es3-Bjl(TkE&={G!z{l1tWzr^1C!3Ac_XYpGK*97O-b^yl+=Hn~hHtXJN{
zHSEYC^BEHww;pe8f2`@rVT+bo+PU&33>ij=sX=pAx{o_E+gLJZQ(t*GaTq7Ouc{+k
zL8>ngij+{?NIUea&f=wbu*euW3)xFHrMGSWoM+J-<jvtykj_8l36G5IZ^ngWn0~&y
zy+{UvSc}%JVrw@A>-{;xFBHDAs5?34J*cHU5;(}$Vh1w8TH~?B4qk;GuLV_GkV*j-
z5k*q=5B-swGI)o5JQPDFc$F$~xD{48r~N4-)Uwv*Q-Qrsx}rmSLAG5Jkna6m9oIjB
zMc4m2WFCTG8(wCp%yMIjPM~h*jDmo{Tx5ZKMd-%~TxX53I9JZvyosTqql5zXq;>c{
zZU5KUaH-nn$<UpxqP)7Y6zyq*t>ng=$o5g^zUHMzvJFh;>t~Vs&lBVuiY=#<bClqz
zuKqYZ8O1BC4oCqN(Esep{mcC*Q3$hed~I|~jA?&HTgTuZ6;SXshsGjt0>4`Aeo%Rx
z+kt9#O{|(hO&H)vwGAlYjm3pLZ~KO+77ZD(bC`qeYVy9c{bGmAZ=;K1jRVCoA`la+
zc!r3Ww6<-T@xQb%x}3H_VP6N9qPc$$a?0xfs4g&g*%*9p9iFoA#YM8#=t??3Utd3F
zAarm-HJbTAXyNcH6(W(0MM-Zf(H)zPb&R+0N?oRn{|%astPV7~Y@Yf<%J=4gVwDtM
zoi+DY>e#$?m#ub~G~qqD&EIlFv^?L+pIAy=5@@D_dZx1t2-hWS2lKE>x$CxNwc_4u
zs#Ao{v26apl2k!tT6Ayn<261^tjb4@3bP4owcm9APbSCVGvm-ZdC$s*|NPcQL#)r6
zhrj_)e7VEN3rF5{=e=Ly&8DqWEAk5C+B8knP*|)W665dT*;-$>iPVn9if^b)nhF>0
zt~`KQ^&VSOYH35nnYXH&w;J_8v$8q^3OLKDn(s9t2O-UK%ABkJGhRP-US4iX-AJ5p
zmxm9pmQ2)-+YeDHdqN98(J*P?wLP<t=<CN0BI3a2lXkUi2`|^e@;Hx6dL)1E_-(+;
zLw@7{iTXIm0kk;s@v$xs1~_^um=04|W)uZ@?a1c?+t=B1{3X5JwYnYnct+*iCt%w(
z(H#zvVAy+{L!UcWg6CD@o88@$ga?)MbN-Ge!*r?}-}kMBpUKzH3mSh;b8L$>O2Fhr
z@e?OBz^AUm&f_fDPJTjKTT||$Lal-M-WLVO-kI9>?U)Fy=YHOf^j<F_5txD8)0K;t
z@H-;qRmV~{fvUQ|xew^^1>x@hQe5)e%$|9?qVm<#47I*8%0i9W<ak=_k!9E-+}DYt
zHb{6pnZe^PaE<bSuPR(-sq)RWSg<r}+Lkgly-_myiB7}*%-HoQN0GS(ZQ&}Xh>k`y
z!@ERV`#D&R!*#~=PRxY@+^#kyd&R=+9h)v#*KLYc)C@hu$8TDM1{Q^Q0^y(y=XOJT
zrP5Z1bdq;FAHV-%vV6=yr;UqK@;6m`yuG4edBh7GO(8&tuK6z@PAlv$VexU+v8Dk7
z@LpucW97q!?O{w=kz$shYW)Q2p8AJBquLJEDAKZ<?((}ArzduK<g#UJOQ_jMGMJix
zepizIuNn9mS7yu>5l=F{ZA0N{huyG(<*DwtGBUG!w0EiN4>J9{4-H`tqu;WQ%<IOg
z)(TSe0PBuhj<F7KQbX!>XMNCfqv0j&C_k_+z;M!2i4!qdhdU|8$?57p=Q+@O8jTTF
zr|^e6oBVN>OSM!0JSC5e&4jSBfwtN|ml&88S$Vu-FYWcdIv5A086aEj_9_x;bJIq)
zaHl5!hZv+M(}+r@k&5=kn*xUj**josvvTa}7AdRR=;SM|;=X3zD&LWi9bH<+eW<bX
zB|mRMop)CDmAT{=GqZaY68}2=KloPk+mu7f?*s9hvw3Z847(rYLg9)!fuDWjC4(}r
zR(kBe2!!;Ea?5a5CWXUUI`QDn!&9`5z;COaRC3O&BWtsR;3lj_r8Jmwn;>;#LOEg1
zdTpFNN#{!pG?r>B{;!3<yA-mvD!ybIpwrwvC$EN;+^Vgu6AaOTXOD;2YmhS3Y6jW@
zn!qRRn6BfN1Tr(Q{MU0i^!J|4AeOb&5fY>He7R9oTY!tCOACU0SuGiR4i9(CSnDct
z)(e{6ynA$>(?=O}7auSe5|R04JH*RrlJ|cS8Qc4kNDkR0^2iJv@$$jCGsPgCq>NsD
zwZ=)L<dz3PsL@0DBW!N}Y5-Bqf{2MoXR9royMS6n@%Y%D26QFZ@LH8R@24&7+ECFm
z&>L=Ey5_m}S@D~((tDhH=ThNwSYdZ1mHGb}lq_eA>$ec^g}_Ta_|q~xQG6~t{&sQ&
zDK-B?J5*2P3pUNv>U*|5??wMHBT0i6OYRMx&FR9o^u+=`#MkZfk=v;Ti9cI|Kn0cT
zmy%R>r&b$9bhHIPx>U<G{FezD&ON?nZ`T<5^W1Mm9~K<?x4?t_4svt^=9P;O=R<DL
zxVwrhEj3dUVM<72agQY^U&6?pT!1v{4vW=uik5fKg?f&IMiobZHKlUwCZSJXsRGl`
z{=B0o!^BYj%)B@CTC?w?dB-pL$Aj|LG$eNOdr}=o11URv=ZD=RJ%3_(dfbpk_SVWk
z?x3dQD?57pITb_H-opp6pyq$mwa9Rs?CdD~T&whtV$O!z`}g&ZeT`yF&9?r9A&Ddn
z6mS|rEn`nFI`6n9@-tVk!Qb=uZ5_H%Wtx=7ix=mj_GjTmw>mbYik9RO7H&#aXoNHv
z(7Hdm%w38B#9VDXP4Lt4^`}e-$?y?QowEl&mODqb<}O3h-hDDixf|e!XO&8a{cDD6
z--}dTK2D8(?G6y{=&PHvrh%i96a>qAa|uq@vb*|gnHrkI)+kkY<9)YeM&6lWj9sHR
z*U+T6tOF%A30qNDst9ej)FyLyev#r+wRfrNI8@e(H>V{n$3OM*^oe(`d$dRQ`}(%-
zKlZ$l&wR#|QIlJM;bIE#!`_gydcItyLk@A`MsZr9zQp}P1h8Iu7N`5AhfKwfaCI=p
zxxi84(JtN#vY<!(SrW&_vv*Q8N)Wz)7z0<Od9O^Di{AcwX<f-$lkXgd=!UqTwa|+c
zH@5*$87Iq22Bgv#Zg&%jJpWr-FXsapV<QLtNv(*^6@WlT<>~uf>HDH%R$uR)^RH(M
z|CQpU@LwKvYa8FPq+~IGXIo7p@WNVO;veTxmKve5sv?w*x~ygS4oF$|XA#u?6if*C
z*MaTun|$p(45Tpj7p>hBOSU*1hqgZVORM=taQlsxQ<VZR=t!R7HC0}AZu~x?R{Kn#
zoMk{a&v){J9Zd%zG=ip3sOiyVp!{X}&oFf87sNYI+`@2{R$<OTXIUOufK&YNyTeE^
zx7{NX!AKb6)rvk2YSoW%f6|_ou@|DeZA=#S@Ra5?RDwGHHpxY?FNKrW&b5Z^0tmvM
zQkpY`JEeeN(*)#*tz8#}n*<<(?!GO5i1wCDylFdnS9#W^u5QC%-a36allb-SqsyDE
zD4e~souo1KJ6{Lmn3i#3V?JYccEyH$EAH%*mDEIPFviBw*uoeXa_veXvzM3_^b^Jg
zG%a&yi2B<NAu-y7dqulm`$<^#((eZx*EQj&w1>1eOa*6?Y@cci*jS|2zNTzB?ir^!
zPbN9Zo*8Z1FiS>i!}%kUB+0rVLQ}it+gWk?{^thB>x&Gd9e8*?Z0)d<k4!C>@8X5F
z>rzNx8u1p{+SN(UK`Q&qNGK?K+bNUW(159!oKF(+!p|yvtWjmEBtLVcN0H-@xV@ah
zNRlLt`<aK_SyeMPS;UpJZwG#R?$4R)F8}NG$08p}R_EhtYUWnFs%U#7Ma!@El8fI(
z;r{q}lD)PLWPku7DF;QacnY2J^z$l@&yP9WrH8)%?e4F`oSA_@{2-83{Ru@rkVwvL
z5r5R{U4ePDrAwy6^MmX;&pHhgh9-;Y>`EEf?)>J}ndQUhq{)&LTB^@~7ae3+UxTWa
z%_vZV5#dgx&se5%WjSt+Zt<|ZdB<h?7(4fhMX2F5X)7-j9vjY7mXno!98=YsEsA=6
zR1}wCmBNS9RJ;9J7#=p`JVo`j3wWZ(Q1_-fgnymJGzA?Q^|QM{3jR@dV$F(<Y{AmF
z@kI^f>^M)5PH$s)$$$#=5eRyTLn{SUa=<rteXc#JC25zr^n`(_IMIIVnPE3%N_jdh
zJ1wali=Ts%%8khoVpRjCjaP;8M!K=%ep>i7P9{`8tcJ#VxaiUtGz({L<c#wjqONKW
z0}^&ZI8i3{rdxZ>=pkDm{QH&ZHgPC|(WuI)GWO@pZ;IpE{~7?uIfkh4G1o7I1?a0z
zm7GbGU;ZGhNr@zf?~5NnqtN%jiti*GT0OQSvrZ>mRVgUrvPTzR540sLKBf(2?(wp%
z!E_UJFGNK{g>D~OexZyYSTBg56!aI}u(J}nT67s>?L}GEybP4l*m8HnEsvbC?C;h{
zda5NXfNWQT+r_(r_K9YVSITD0JFXr$_Y4Su$mEj~{gLz-m#F0T!5P)m<pf71*XEc2
zjIl2hHo{r`B@oX;7JA+=kO<a|<x0Sr$KM9I7sgU&!STMlERun&*ak|r-~s5V*IK+R
zc*EOWm7J{U{k;C%PCST$C1_4KUK%J#5;>A2OeB4p*xzoiC5KrMNV&G=uLeoX#PcXH
zr?sWS0K0MvupPPndoFRJZCkOb@38%SJYvBM0<k90zJ7D4oVb|u@oq$#;psOX_LYa`
z4vtBLT<kBP)jWd4!E@D4Yt8)E)_~cPyI{>o1pyt#F4BBFWXvuFP?jv-byq^T1vRRk
z9l=7bT`tpfO@`<TR@x{0yP|DS02Rm3l=QYn<$Z9`+<mIkp9hE*H7yxhz`;Yq8y`|&
zrk?bB2CUFYcU`#{J;$U|qzPzt$Y`oEK!b;T+tK4BtY_M-Ro4REBUGAtVCk427q2eD
zrxh+nwxA1!&N}TMkB>EeR;{T~&^ue4+&~#hx$2*tinA6-{)nRQ*}ScwjEWJRzie4`
zJN!0PdEpST_iQa#lBA<&wBYOw{4rgVyC*&G<re4Gq*lZL*FyBoT*_wsC7k<9fkE`y
z-3yy3IgcYGk9>ix&m&3lVJ?Z8qP7b=9?4V)fb~+qex_{B_5Tbbt?g^s;%A)G?))c`
z%5;HYlmCtOoahphbW}feyTX&!B5G|i1rLZbRl~1p$t9sfE1Z+4Bt_8WF_ISuzBb~I
z!Zq5zMMKH)MN1Obllf2ukh`Am=S5NHrDJzi#Du7q0ZV<^FD=kow>{FLRNN{j7IHhS
z1<J9dE;6+2G8vQe5pU9J%uV3znBqQWG9@1Q2adZ}TnKvo5%r{6tjsID@FwRUQjl0^
z8<Wi;FUs27kq#j6Yqv)qTQc?({B*3bVZnrSwRppWWPVgZKemSef-gAL)1sT8b*Dq4
zBr>I&=TtLLyn^T9hZAoT+24!7_07Njr~Vyr+!gH4#W+ZP*4W>a?qQaj03XJamOn&l
zAcpUslG#kNM0MS1ZgBe1`67Np;Ym?5+;84}&2Z_X3^VCCeraeZRa)Z&R&rqC`6FP@
zm=b(v<pE9+55`1o>pkD7VTm4#R=O$)2vHMo6oVzT3aUPkoRZ>S%jp|@MNhK$F^$V?
zxd%T>^Hj>Ho`Cxg1RmP*k0v39LX?EAdnjG>O)yz%`ih_dr3C<oF)e@@fyZ)*uc@r)
zhJO~lZ0FqAy|4@k<but?R<TydL{&po^RJIrCqhgCUqR6hAWMGCGQhRwwifY?=FshR
zX0s>TE?L)mkg5dW4FmTz*8&Mn`NH)Lm6^bN<Mmo?eZQR2pSTdeeKq*Puz!5lsOiF@
z4aQQzmvNyS%;wV=KS}9b;I(aFSN>Dlgn6RoquaUb75X0h+Dx6t9Idn#2X@ZsSp{2V
zvdi2<RAd1~R3yg&S~wfiRQ}Wis|*ulQG~(_xydt!Yifvukpbq>fgEUZj!6GS-ajd+
zpyj6(b?*z>rpjAV^`mr7a+>Z&4um(Bz8Co37%wqm=y7bGF$6$ive#h$Lm8ZgMw0HI
zsxt;xB@yH6_xW!(#bw`h+WBz6;lPh0PF;^)`5EYmeyKmW=R6Ausi~sNI@&v#z1ID5
zD^xyq`lv;s1Le5NlOkdNaB^K+D9DLdu%T}Zup+Q^I}*V)am1|&rf{EgY7`h>690YL
zLE1KCzaVDhg|!PHgpCyd#O6}(yFsQ{jX8__g2&l3P%DmwL2g7xq|rAmzub-CbO2>_
z>I>_ry2IF1{FMsLcKP4Vl}+e@H;^@3)8*;1Kw#zk#uL(_s#|2Vksc=eJ47!p2-V^=
zndIST#!5ORd}2sc=Cu&eX_w}X?u6xQWuri{_UT|&j||9yxv|-|s{NO=6j6+`iIPmG
zQDDa;D_$_Ef&2(p#v(OJ&Q+-}W9Uff5Bh0l-D$wfU4BfCk^nA#%>4Di#T#<q{s;C^
z31Z7VtM++dy*e*z<CXTg(*pdOU$NSeR<h-L-jl;0VfwsEi~N<zv>{mm*UiHt#q3j}
z#BgV@h@80b9H59!a-UFuK9o}CmblQ53R(AvgD~E;m|)-ypNtSXr7Enp>b$;e+1Qf$
zEa1MF3WTfvWy_XE4YBV39yRwG!y~y)n%bAq{A@&hIaxd~Io>eCNS{#%Yj${PJvVhw
zDowScl`^}8SqUM&f(bqLcXq*|aGM3h!dDY|b59W$)5{UOVuM!dMoc~({b{=qYutu@
z7Qb3ZRQ-tac%2IX+4l76wPijsE0C@-9t)MqLI2@4A0|tB@n5FIaEn5Vc6_j(rtnio
zkz6qaTg^+7oMZO>RKv)mgUUm^{i{B2v$*i9*%^+CV+cOoKOK-PwGmpxdq`C>VZFKh
z2Z{nt9*vCXp44~~Z4#Iwg1|5EV-#ob=9VAV_Q?4>UTZKvN$%;>JL_7UPy0Puv+rME
zN$&&{WeDB_1Lx)38v>Kl%N}QkG%lSqiRM7V^(4LLp3Y`ZG048Qau>QWNZ|<omsE0g
zP%=cFHGyz^yR3ahpCwiaCf~a${cGt(tL3-+$LzIoWJx;Lw{)7ffmF1aJN6q5m1Byh
zUZWy1dHqBkWVNQj#%fxI?Rw8ZF^RtxeZj>aF9pG#q5~)U$_<?)znV{ojPkbphR-`7
zc_*uN1hA<Vr;fZ}N_<}67ttOI7rVcJVW*l2mWv)<&<@w9lB04xQOuQ~qdyBo&Zp?o
zufAB`nALBqAI;a)_tWnfza4IOUQ`%`%q<X+#_=;elYFZX&3z|4<D@0YB)JJb;|O+`
zXyEI5ya+UkRJ|ivv>W5kK?%S8M>@f#Wx|bIf&p)|>?Bsc3nx?D%M(;Zs{ZRluAx#@
z!Q+8k;2=B92ruAb=wRF4kEb7ix_4Dc^B}0&QAFKJ{d>YKUK6&e))PBTE;|$Vt%i7k
zP~-uu>TsrUnD;{ci@~uo168P6YvDIbIUA2J_YJa?I8|ji*YsQYraTN*+~XRvRY{yq
zuz#%wgXid+q}Swe5-aBcVG}#_W2N?FI2%BaVhR5eVoWgOpS?x%Sgoz7uZ#a8z<j|O
znJ3d(pHJFFCoi`s(!mrxqe|Wcda9TNb+w*8XHwl$kx7$#9oA|+=SGZsV0$_znv$1z
zJ=%jW+}F(zs%m&m-?ocO6Z+=+j$o=zhB7BMye{Q5ey!-GW11<;srZ{`W*-+t9&41?
zA1j`RG(c5JcUSFG=8Z1^e!53Xw7{~1UP$c=%Kr#yhpN&GoyZMF3XF#QzVgmR&4L4#
z!=h&GSsd(Ar_K-Q>H7QBR(0o8#CX>?+D|4T`J`7vm?~Ta@8nNP|KVofQ@Qgq2<Py6
zO(HynC1W-7(1R8<qrls(s!jZ(F&9EK|FSkEno4;RnKTlGIYqAqJ&u9d2*)~f+%e7j
zDzAdZbVF3tHX_qbq-ycD5lJyxV9Dcmw=~+4`#IcjZQ7S4+{Us*=BZIDPtv==AgtW$
z=#>cOtBB5d@t_X)Nl;bsBki-T5)|y30w*J5D}mxmc#03s7x<>^#JYFybi|3Du5J~_
z9;`e}2#zJwLU|f-hgLTS{{<OJ?|zMEoXh=>w+MBioP2Wd7^n0tjEN-)>+%|RVu-M>
zdH`p`R#?{Sele)&7kYW?_bk}}+UK_Y4=ov0wyNFL_t)eW%;CXKv~0JI8BlXN0o;r3
zAtZ>(`l<fX+G8+3;y0<|<^%ZVGvgo!>Z`StHS77<@^;fbdG+I~6p;D0W@YqO``gUm
zBed{?Plwg$q7j?6*-GT(1Kg+deWyW<QNDkNkk@N1EGgX5>c6%h?Jdji&bc$)R9*Rz
zX0w5qaRA%?H2>||Jc8<*9OePK#$uF5W#0Sh7V#3xavaMSw3Jxw*njrZ@ORP817q1X
zPP~jyNz|P&pQ5%4ze2XYr8dKO5Yvo)nA3+ae1TpdrQy&Gq=rXeEUM*mLL+I!O<@wD
zW4S~t^<Oz0vw@K*y*g@fVtaQPN0x7N-*K(Ih=96XYq`rf(_aMDa~HeO@YOXH(XSiw
zxm*Bt!CRdB^O=5cQU|lhlMf5U{ajF0?}|ck#<g0pJ4*b#7dzZjCUa7l75t?u&ns?!
zB_zHLp>O1-SE2W+GHjG?_v02fW;IX_^&Zthxzpchr~gxQNYCkwLh7XI9b>EJkJsd|
zoD0@-PQ@+qU<h<!IvLR*;b3)81R}5^Uqj&_XUZQAaHj(7&WpUKVh_D2Nxq$1{=i1)
z4a9+Z50CCe#Ta9QZr1ILL}S@4L<)HIbU{jN);+%@b2f{#j!)&jhz{e;g_K6e$(JJ9
ztPR?XgQdW+4sCit7$9-c+UZ3=6;*Qic>es((P>|jGvs;s>z@3?)vdM}x9^F^uO|G~
z<rrRks8jNP{Qey>C3R9vc<{5A9m)p2g2GfZbj2eSGoH3$R;+qblGgh;e1!YC)^=ed
zC<6UU4oPHr4fh&}CM654?`t6GvfN(x1T5ZrYD`#HgfSjg-{AKgZ)~aNzYH*+br50t
zBcfb*Zkm7gkjaYrPPBTndftvyz`eRHE27)4wXR1Gg&Fn?1YXt4e=rp$HaY$y6{ZC>
z!|mo%FT$ica3{%mVz)=MytV-|UW5qq-c4*|kB`#GP|^6Ck>BAd9tV!^up>XTMz`jf
ze*GG4mbo=)7oqaBJQ?QL-*ShC&sksQlm5+D-#!M%NFZ4rQ!fLLPbHsHTtM5c14yTj
z?W~=Ifcvk;F#`iTvOF_^O|4NAbC^XpqTtgAjPB6)BdA=)1$1DH<||J7ZWZ9VH!?GU
zwq|s24dM$*<%PS11~Y=(LP{2V6$AFIWlzxozute5kt1pvA1@yD@Zg*&ab6Q)oUBQB
zKr}vwlv|DL&nl_kPDUktPGx(pUr~@Yfr%1VckJ$*>udL@#hgv5)hqUNuO+n(cbbMM
za)c63jV#1MnkNJkXmG;0D+H;+SM~s*M3L~`Aa?)eR(DReKZ*8~57yvplh3y$WNZWN
zn?}s+_gP9KSp*g<KYpC6sX5>v`Jy_jxrPn4U5~J=)!ZlY5jEG<@b^uza`9H5ZJHTH
zWqvGj^aE>ityZh{rGPX)`uB8JlAL`F_SmW708rG4nT>)X<47;UMq3VJAk2^`(Y}~O
zXsZSvJwTnZK3OWYz<b+3*BPQXv&?)YdK4y?9Fj%|UIS9_r_b_MzN@r^nR#q0m0qw&
z<h=4~X0$l=;;mFUUA>DsnCT4Gw#3AT{vCglwqYJ#Fx)AY!VNi0$7;nt$@4#!XF?(q
z<Svv9cUcQXYf>FmN{{U#F1-G;KMeZ%MCmIS4@r^_KUVznY39S_sC`SeD(CZ(;DZZS
z**GOEHW@9J`ftQ7IFx0+j7@Vv{*PShexi56$jH({b%}KFS<ei`p!u*GqS%&Hm-T;r
z0mR%T178K34CL+{8I1+nku|y=IBCK^4wqeiB|D#9zP7_R7;x`~3-dDo|B&5~;R^N{
z)z_$$0Etk->TsDiMh7Ijef+2J&cDVJZ#>Uy8EJm=vobj-MrBS~^`k1*PWQXgv#6x^
zt9g1%OA4c&F}_?}H~)n$aUa}3eZ>YMby%kgun=j)>?SUx<>a!a5yNy4GfvO^eaU&w
zEdDfC_3{s()G~Mkh>LVVc=}IV#-d}WidG};yVz?6d#pvug6;q~IRduW5iy(w(rYlI
zvGFQCiMePz1P~kLX~T%#>y|q1?JgD33P&#aZm0LNp<$i0hbYgD4|U)JqAL?F3R=VZ
zHi7NoMZn!rEb?Ftnf0u<<<7E0vW0z1-U)$lkyj%nx;zgK^w;y#-p}`D+|BMi-D{ig
zK0R2oz%_z{Esu$Fot_?(z606cVB!)ak7n9Z#HiW>rjUo|Es(FAnSTU*@|snN7x(pM
z&Rf=qjte61X>`aj{pEE*4FC21thVar7vhR_Kt5ZXD9|qDp9aa=3U+3Zm6z_LEI{}A
zpyEJ5^6vI~6FMNW{xni?OM`X`ctAb+*@qzVI)w8H&=`B4Apc!YoVXUTHRm4(Nk}0s
zlU4@mKhN)u)F=o(yNgUCFzRkD8cQ83k)$DClpY^+8I2(*C*+s@i&V`r615{yN~V2j
z+XvVXQeTL(%3_AVo(~Je&$9O3oPU=vfT+nyJrAE2*n7n*|B<1<Sbx)m$$vVZpGH4w
zn%b_QBz=E@u|KE-V*<PWGqVlifi?^r(NC8UYFZg8<NV<CgLiR=v{fXBxsi~{jU?EH
ztl8&t_t}2ZH}IVsr(B;~4(SD!h?e*2sW|aHYB<l%DC84kh|;$^pzP@qKYsVP(QZoO
zUHkbjUt<baSqH0K$%^<+|2*UUw^V7GRzs$GJU=NWAAJyaob(5>zoEGrWPKt7KSK=>
z03F=bu=@g@NeZ=5EC~eaQ$*Bsi5m4v(mPTyK&W|K@PKfJsD4*L;rmGlgNRE6BV+sR
zT$zbTh$@K#w$VQA*h~VQ%?3u9wtiM*{gg1pV70hS7Fts8vXzZe2~TPr^jfB9yYO|_
z-|TBCXR)!4_o-)%W%-h(b@J+Alz%RnX?2~O#I6_JJ~1=GOKMqH{D~pc(THZvc2ie}
zxsU_}ttw@lGx`Q%s-P9B>V7B4DY2_J#&6PB=|XbLtxhW*Xoc4t3f<>e)R#IY8phqy
z!q=pENL8Hc>wKDt73zr6S0w#1Ownpz0p?8$tHiqk(sS*vY_Py+?3M1Eq~-Oq&HLOw
z;p`bUrYTi>hfk-GY0{suvQn2fClD62swleF@Klh=z4&*Pb!C+#BFIwDF?lomqza1*
zA^j>F(v&M>K!$G3eJy2DOD5*c5P?vB&=*0UHB%V8u3+ysf97k#09p7z0?l*Vl|u;O
zPjc}StIIFFj?_z>Hq7Ra#utEm3w_F;z2QDQKRhgPJ48drjQac=$a3)MsWi@6Y9bUl
z?t-OT>oSSFw5$+;(=N$+bN4??4dvonWT$3A@U8U(`V^RO+g%qMqT>Xt$JAfFU68f_
z0eb$X@#YY9T7hNx@chTwz;o-SaChvr0oH~2_6YM)JxwJ_B^u7-z)C;=hB-?ppJ1m0
zuc^&^py&LycyrN!016l4U57IZ?BC~@MH;aE1zc3UKI=Q?5M5+{-b516)~L5}dG>>!
z-dwjfk8Qppee3kVUku8}5I)q8PQ&Ot`Aw_&7C175kTquqRZh62hSOJ8jl_Nrrs6_i
zYeC_4_~j$lef`}?clx7ck`gSV26v)HicdpTv6>cJ$a<f3pQBlphphk3sct(md4be^
zBUX=*>*6ID{1=w><!)90lU#!ab^Z^Z1W_GwYokjeyE|9y4&2j7@ibh&^Rr`z*Nfd4
znT3C)SbRYP$edNrf3K+CX9RN45IHOSbP@O1s^C9zCX)eIA<9ng%XE48zW#miafnjA
zh=06|bptna?#q){Kww;~MeKi7?l!UETs^z1isIx#dPMo8)7jj@VRx2N`VEer<IHu>
zXxOQ+A}LZEbW1nNm7yR2i|}8bPBq!l<%dosm7G%v&F?rQ6*P!}kxa!H9tH^2fadg{
zH<0F3+XcrJe+Hlv_a4GT=%)VKF*vXYtMNONlm+j?oiuGAr-+GM&WR(aldQA+ZkUe`
zzeq&KPqSDHi=GV3$?fVODn>?ZJF`$WO=G*Xk8!%?S7|==o9h6E{<*u)T=sAs4Do-i
zdI!t_{7qnB3e>loc39qyxAsoC?PLXjxHeI{j?dorg!p(U3K2}b5C1CE-0h7W<dR}Q
zOgamBWQ1^zs(332UGk799;?6)zEcF(tvgu2V_^aLMo<1nX6Kn9d^*HMBjKU8doQve
zHf?d<{m;Z-;m$4hrT#?h=FuqJbC|3I1NKha0Bjw3%Shc{rlw?9*7B6plg=<A`_Qb>
z!7hnUaZx)??4ktN9ILUDB~(N7XJp*tx;9W*+49g0_yn=1T&eweLW2&o_@6n%>bcz}
z6wo&CkreVwCk-4!?&}>(Dbx>}2q8-+JNITMm@~b248eZKlnPMQnkLU`Xt;0$<51VI
zY<5!B7}1U#i*2Z#im*Gv?(1(PbrL=Xq$U)J1oX~%Rkd~{SYPcR5#v*{Pb@6X`o!bX
zTi1vhEd&6CuIJhxUTOy~g<V(Uy6n!WrxW=WKf2INH8cB|MT(-FUHuhi1_RD?vnM}7
zA^;Mch?{V%X5Lo7kEebOvj<D)Wc9^c0StX}bImo(1$uNkzzf#_)zqL@A2!a<Q4_Um
z?f1MqTf58CP9B;CJMzG=zbEW1t#<L2(oc*?l&39DTOh|X*GpI7c~;-IwEmv#&^YzD
zG*f_r*>`p0jbYtD^B<D}|3W#|xbQ1qG=4QiI`tRe>|WvJT~mCda)2ic9PlHHeQz!g
zC1iD>Y}W95ujc4rbf!YjH<8|*U!)Sel^XFCt>ZVpw<jdF=9&*`(x_~e!jtry_u}q#
zEZfxU$GbO-o=(aglw;)=uL3RV$*J#sWr)xRoeJG?n{MPIDRR_zK5`F*I`f>leE_~;
zE`U}I#pPfCW#>|RBh@1C);JNdrC%}OUdl_Us|7(&|Lc%8ya!%hV7vE?(U|W>$V!X7
z1AXsQFSX_mPA~C-;rGmp5h_6Nwqd36gi%n+9Z|TC>QouUUr>BpWR&e2yW2#+jaiMJ
z1KZuY4mwl|FDTdkM!{yk3|#tm_%FVtyi1mQZ#?hw7hIXYntS85IE})cH~vnF|1mw{
zE5SZoI7FC!hp7H2i;KISO>B|3X8iFRy7>_gV>$5Hr22%>pB_@RhYeFKk7@J_$%F(;
z!pP1+N&`J4MfK*fq);0%_oQXf@;G|-5ejE&nX4VxT&oXK8vReXr_^X;0b3j=^Z&K?
z<&RK)(f>o<k%}miitM2nZ;`Pkp~e<w>}x_~tFiBCwJU43NgB)8v+tBB%Zz>BB1U$N
z?91mq<Nf&?zCV0FkKfF_=Q;P>bI&>VJomm1!ur?rph1$$c#WvciCSGxthpQOxPRD_
zqKDcBg_4LXsj32J2c!DJYh}e5{S!5DmGNgQ%ScZg%_DrT<#Yx=kqdn?vK!0`8ygMr
zs14b0g})iLJ8tnC6fZL5?4ogG|Hw>KoN63(khx2&Sc!A5=kvQ+kipTgG+NL>I!wdk
z_kZn{FYpJAV-r)_G1Zw5;sYjR_6x+%cf3p0GFFIQW^Qq3YuS`NsB_jYU#{%Cc0d2`
zg@H_+Rz;M<9@jFFOK8Q^eR)VYbbcSsVO}Q~(NgT1s$sZ7=+}^qmREi`Bp??#Rk7<I
zkr9#JtcUz<Mrz;P-RZBk4JOxprK%IpTOfGYN=$1_tkokE6$sw4sjk@e*<{z$1=?e>
zks`ZcwGU0IaW&2lE)DzH+UmWjsrpM;cJ!S`9NbuIU-55wopo;ba!vtvqiyRGg5U)!
z$GgD5!_;rtKAq5{_n%YWD1X0Y?%`hH8&YqUZ}*Y7Ed6Y4BX!p@)Tf|!BLBe`C$3a8
zw`Jl6Vq5m0szdw_Ue~QboZ0iU=IyWbPPIzqPsZ-;ZPl(Q^LkejmZ)14O%~jXta=v4
zB0>`v_OKF>@ejs(M4IIy$>nWR+SO@ka+%|#2ED1v;{>tc%9V^C4{oN=S9O>lj_|+m
zWC&mAuURusS*ZNMy$5hAo(A7Lp>}>#QD$~4O?-TiuLvK`<7?ltxJ;X&0*wOTOh!s(
z!?_e$>&h)-pQF*Bz|KyoWhr}b6ZGT%J^z17;8w)27r_2wQx&u>z~i59_3Z7FrK0w?
z$O#Ku5Pn*1E`A=|hQ1ij0?Egs5*T6tOUe7rH-fv8<npyC)l}lgE&aErT*27`H^Tp-
z^T7gN+A#wJvlf6_W-aSHs!tJa+aHesaMbEU04^pYgt(BkSWG%c0TS#K01g@klM7)r
zTLGVM-OV6S64>`YH*HzL^<!-&ngp;xvO}ZIdG{!Uq9EX<h6bb{!1@7uB}2g(j3Dmr
znLw|{_}v&Cd6k!(c{P-VcQe5U&|4oLkumqteU@l6ae9T1rXlD?urC_zw?0NeTC}(e
z0(6-7xzIz}6dLR?()qZY>|r#z@4XrX!VPQagoeC$6~A@K{hcpEikboA35Z!3_`U+T
z80BHb1U&UWn8M@nhwcY0vsh<5z6xAV^yY3!5Lyl&K%<vLx2&icui`Etk8m_C)WHiU
z{da}RM}LoFbdcHHC$jDxY}exPZ2)yZRc`pwE;Bf#fE4W5JbZ3Uc~zho2ohjB?q>ob
z678kl()IEl_~P;N0Ov{A_EJJ6|4&<@G7Z$yLOlSpK@~`KNkt}?2=L-?F&?;>V*(rr
zNjj}bcO58g0<|Gxulh^AA;M`s%o2-)VeN_~f4!F;P{a=Z2e20?CeimV0YK2*=o3c@
z4$r`J-Dl@1tiV~Ip9Kd)=Pzh16zJ;HBqV~pO^MJE>3h)G8})n9d*u9>KYXl%R2fqO
z`Tzn80QLxOSA&|m>Ye^*G^d&%gpdc&#hR6ad;wllmJPYau3mrOuXyJEf|p(Dy%wIm
zc?e1f;OWU7Z2yS}Ab~V`PKA@tT0MoyLKg}bk6DKp)dU3q08r`RY1zg+UhG%RKXel^
z?5n;vh*jn}_^Ltp&ozRr6-rHJ&g4jztdKc`yE*n@Gp2|>`X}Ab2VXhN`Ni|Y)=H^l
z!~UJe_(tp`n?mL``ETWgz7WcwDX2gVCN;viz54@ygN2VLRmT2GA8updHsr51)$`V|
zG94IrufRze=ub$zv%jQRC(WG(H;(J2$9(q435n#z`adk+upd63%J|pvh$;h6`-ag=
zD%Az&nFA(e0;DbrrV1Q5{HI@wi_V&tVQ?kdw_C-eDXJfzjeJb+9;wizAf%L-zH3eO
zn7@J7-WpV3*Qd=ZT_|K_0T?9Af)JqwVUk@lMEesKs_NYPD8Esl)*41r;&dWRm9Hr3
zbrYRMSSi0~K_8$Df`Gc@vdT7iFIoHk0ophUF4}=dwr?Uu5ymzOFmd$7<(6m-LnpO*
zFZF;kN}~Lp4h_Eh!au)@j#0b}Y#rcP!cMIKqhTnJc?X>`O9Tr~p~<{O^SJaiTynqL
zzW=XjSR7A!(4fHP5yqt-q%{tC`3nnR%Bxv~!DUXC4_IIckVaQ0nih0g!KtR3`9c&{
zU}_sT_0PlRlmHgNKk52zrV8MA%fnBsk{YFH9wJxamf)Nk)Ufj;5bmuNaAYNt)kgFq
zcV|>Y`aatciED8{LRY{UnRxAO(o%!%c4-bh<(Gzc(A;%{-D?IO&q<rRlRkVjC|D>z
z5Dy!;SE&DX3nS54AnR^Tc@4}!2%1C-aA*s_H+}=RL=-A1;PL?e3czB*EbbrUKUj>{
zi7+uedUqTYQ@|_k?jb;X{%w!Lkv?F5!DA5&&1rhpLRI!US#sMW2gn3^8n_{zRCEXa
z?&9$xX9Et+1ZNs3MQTAGJE)J9Pwd_<8lY2wXX|ij>=4b;vP-*~lDx-R$3i1~2K>>X
z&Sc%ng=OE$h5lf<x8zyw3eja-)Y-Nd+bF*{IXZ+b7(i^YX^d9O6w7R;wkMIOEZkp!
zm9D6qRL~PbS{*%g#18!CZ7^Q8nmkX2|0E5A%Rv8{)IpL!sZBlU$na!xhT##4t%W8;
zqbO@=N^S0Ft^*CX`&_AEJZnXuloT>k$H+G&=@Bd;KAGH1H1bm6Q-ns5a6Ju(?p$lL
z38At-+aY1bawfTanr7G>>pnY^d9iH31i-<w1fUMKu^U8(#V?<m5<g!kSoZ$x*K(`m
zv9h7s!TI_)w_n^iSGSf4>swuTjLfW$uvxi(okyL%NwaJ`LP0~&^qRE@hOlJdhK;S3
z_ZT643L7zB+clKs5#vaDvS06kR~#>MH*p{C^tTUKsfM_RABP5-V3NyrP*IR+Q^{E*
zIN}7CUvX$HP}&^da>9s6x{qj#edhA0`=nu-P(1j_`76grq=|0T;}*?L^Iyq%Ts&ug
z<|_=qSC(wG-;=*4Ea(g367!U4yS&T}47g}E#Rm?@Ey)w&PdWN75HrtEhxj~_sf(6%
zm6dd+r~T#;Nj4B?W#NZrqFD(Dlr7pQNmXbc)jee5aI@#trG@1TCq(&Eg%o$m>Ejd0
zVI3{SX+$e@<%8`!mYRyZkT1Q>pQjx@Sjr&<YdNOEIk`zSJtwZ`3QKv$WAnH;No)+i
zTM_k6&o4hl-R2VIa1puKwM-_4U?z^EIAsfB`#-#nFsw|Cf3ni=Yt~w{IfWkId>BSl
zwcQ{5{nO{(MIq@hiS)1^K2%o#gC9gG!t(WQ(z5J%J{UF@9HqsXWEWY~HI(doJ}G*o
zbUN@!$eEvQOnKKQ`lB>q-`REU2`rLz3_K*5oV*Z|9+?~4S6Kqb;~LuTQ;np4dEjA3
z{CS0Ba$CV!7b$Qo1%h@fJX4?W2nKV~6{7o<+;+U5lwo%uLX|i;mo%KQXofP}euo*q
z*tp#=6&t?uM>dZ1*)EaDV`eOwpT|YZ^smL~R!>kOh7W)G!hlRnp_Z&TrwVhN2v^cg
zYld`tl=FkrUOkloujuzo%2}RSO(4Jv1MxtiVOxq0A4?UnqDAk^C8FOBmoU+O4Uw32
z%N1QwDbcPES)pe5qQIz+m-$9&zi5fA{^psYJZKw6Y*#6%++kiK;w#HuT?*R*`*DnK
zz8pUw+wd<`yk}Jd#kh5b#c%f9dS!69)Z9>M_)fOI+t8cGXAZmq=}c2Q_AoZrrTZM@
zwLYDmw?Tc|xj$X`rpyK_Q1;5<TS85d9v}r<;02bW(50&`$Km$=<-TL?tdiUll2a-!
zB5>ogV_D|PH}}%L2kD;@032-e>etIiH>{@<gNonBo4Y&hEfTUuFR=1q72RDz4E+d*
zHyD^l*hw^gq-l0&(Aa8y<_i8m-HnGyMKI{4mD9Zvk&D`Li|x`+i|HI=3L{;5>5)kt
zbbIRC{=;EWZRxW$XZ;hE;FWnVenIksacEHVHq$1(?(>fr%mK3_I!>>TBw}2I$R0bN
zt0+)X_{rA3+HqSV2y-F)k)135YH=c+YDYHpSoLf9vrG~1y|;c>N%Cg3UIElruTqrk
zT5Y#F+Pe6<k!Nj^S7~_5@aoyERVnSRnQOOCs+o>3rq4$b%K~bHE%?gkWMwdWr=-K+
zJ+0j5Fa`DEVzir=K~xG06oG7xx;;8*>tS5|j&9+++4zZrhJ9sRuIR~}WwJPk7?dMl
z#+eB}&f)6V_8&5q_{DrUrns-mKH6#p#W*gYXe10ykFZtPH=pPl6)mK0<g9q@X-1$q
zRo|n>XnfoAC+!n016BRv(kT18J|2E$BJitanSD^@-qkbEKn!~KvNtfrqc;R`(HV9k
zsxCshWR<I@msyk6@#wwLBpjOjrnE<{Q3ILfPRa-<nryvK8`KQCH~2yNW3^T@<waMu
zr&@~L6-G<T|4K%SJi~U@*;%XEPZx7RbG>R?yo>#nY%c11-AmvR6yc7(hPbX6T&-No
ztR3LO@vfgm?RphzBn_;lGrwv>U{CCgs)3?qX1AhT1oQBo6$NR-8_ue+NlMd#6au-L
z(2PD$O!{Wzvwyb~`+8{GP?*`Eu();U0?A&unIX<82elbIFX<d7&!*T3`Cx;gf>-n~
zHl00Qa$88|>JOTL0@Usg1ZQ(bcT_$o(^N6De^b>ZVxaa10-G6=-|S}8S^r2E_pa@0
zY~k1HnC=6VD6IdJufR5s(BWzU^Nn#$!4n0LRV-(QLR<IyUePT!KRP13cLe{mdHRI}
z5(hpI{cejhof-*&b@pTl{fp|f5MLe|I996=cALh(xxahib5Gr>_axcQw?FK<x`C0O
zM391T^_v0n6k<$L3HD;WXhp}Mmn>tzx0UK?0Q<a?CoZo<>ts*tLX!@*1rBoeBPzPQ
z4kxU_*_8e%{!Ea+(C7sig7JXr6tGkLq#DD@R$?qRs?HEdSJyJSzyY3G#s#Vz&Cmys
z@-ekl9OEHAnGWCg5e?0wZOP=dV>$bKF4rHUtS-Is^<QS6NVFQl7cu!8-%ra>RS3;X
zCO6ViD=h7mKkleqe))(GmHM8vwh;B~HS^xKIr6t>1BR_QI)T*VlV6=VHgU(N`QHf{
zo?Py725Uzz^VHCoZb$TbVp2bWAihQlyREad`4-*$Ykh~aDPi#r%SW!}hs7oGYJw-&
zDPF(9FZS?9>VlN`g+n1LZM!gIw9pW$>ZbQZr{T1l?^Uiqx~cX28t3;55~gi<m2xWm
zX>L^)!{_)CmGCt0rsuJfcV3Da_D!tiuAr*&J=QpsE-a2`ZKZ&V9!(@<EL`sdM%KNi
zZGy8=YX35(yq`GnOkRHg*IIjav;B<KACEi|B*}!==IuN%_zOCX-to!3M^ByI_TGf>
z;E=cMRLKE?xG|ly2ba-)93N|(OPam9t*jFje7rf?!s%GoyI5DN+6<giV{GMc>q^QI
zEkZ4exjefIxnZu1oUiD$BJOUh3t{$n<@NEXZ$fBuezOy+Lc^|cPrPfFi4%{pIRXo^
z?#l5JD=8JWI|un)cUV3@=a_&Z!vr>9G(LDBNZqWng@1O<`UcrjqX*CU_(ZBzEjs*L
zclG)gd&lqccN}!;9wpAA8J)`w(}(H8Mqj6nSh(F>^D%U8^=a}s&2%vIM$8O9z2*BJ
z`TgP5mXt!RKHHCH54^<g8-GE^ih1?7)b?!W7mZ9O^g6tR9G`kJShbxwbbIUCf>ZLA
zaeT(OVXYHdOU=!@!@~5r#@i<jKW`6wwMn*DxTb=#9hqPAj@%h;I(+ZBV*5nIZ;0J$
zx1qJw$Ta9vLGwA@%V~|xf_U!OE2H1OznXd4AchEsqd2WTGfiNjsM7xm(BXA{l5eNg
zW42goJr}i7tkXi&ST<Ti$Wh8WOZ`JPV`vm+d_GOucmW{s_vIwyatj^SM67C=KYRU^
zjm%f^hWH-f7R-O0oIXeVQq1I6FCAI>;JaAmoY)r6kr}!RtVos!$;AJ5Wyv+Ko}Ne8
zuv+$x@2)xfCMs%4_fUT;HEhN6*{|0bys7(=*usZ8LtM^s?T@abX7mf+juQEZ44s!R
zm$}>{rCeQ*req}0W#f9Tu^}}`VFW?yXkCE@q8<gLb{}2Bv(=43$H*HOshc?%#EOkX
zvYH8ChF*k+?<8)1C5N=UYWzFcpOdRl&@4Nx{rjOp(A!c+Ww)A2<}JgHd#I6%BT`EY
zgYyf#sb9O^Y!5A^<z;;k1LRkaLD~?KjM)zURh*?)*fo8XGv^NmDCfUU#SX!&d0zI8
znoj!CBB%0EcA&hk^$fWpWVPjCKUQi${x<DvG1_RIexU2j1NZJIqA)zb^O1{Q8XJju
z?8?0`$-ihinaMIC=OJ7l&T0-`*T4t`*QLRdW<CfKQKKjM^qDsmIy0}aS!l&ik@Q#L
zF*jqCk{l;(=kydeSsStVrDIl$Bs~DSG-=CsUXJE22cOXI+NHJYqRs4EcHfNLP1dfL
z*|5_<TX_yeFdd#T$>af6UId9zqi64Otlum8+clrxe%E-wlaDO?fGYiWu3dxRRcx17
z8xr4l-2at5)B2;L{9XpGny|`*P_Z&Rds0qzm@cY&A-!tKnvtv84S_eI`r*L<UN9+B
z&&~jw8*6@{L~X3?HMyB#C#hPt<|03^fy(XJMQ$!8Oa4l8Gw|Xy(?G2D2w`OqB!21w
ziIVI6_GsaSo~}!?HMF~DAM1Lf)()IC_^;^^#7TQ)Q|vo6c8NX67HI#$59!oSIZIxF
z0XC<oywT#Erm&+r{XSe+4z-O))V&Mpc@u>r4DFJ<ZmiKG&TF&0s&28<c@|M|$SCa3
zswsBO{gP!ZdtOBe3$#b8O9$B`IPLIDm&^)Pdxwkzr}g*m<5@&Wz7anoV|47uXyJtW
zLC0ugBgW!~9Xn?q;3upj>@RzUEGYX<WU)B(jzcSVD+2PjZaC%kO2dcBSfNufNQHJ4
zf>-*3Z;6%q)+2dr!&}AOPj+2C<_#>Ob2QIA?mkyrAjMzj0XoAb=zyQs)stk7?6|UN
zF@3?QTsNCfqey{-cM!z2g|KKzVhA#^5vIEDSM<-yIxnX^;H$O4FXeL2xf}jog(5j{
z#tsTKP$_q0SSlFPI4ex^LjJ|&>6hAHv0_r}HCkvtm$P5f=Z_JS*Q@Fjq&1;Q1Dyir
zAzc$>-ukI1<S4%z>|?`a)a;;N6~~u1R4O#Gs9xCD^@EP^%)i&ZRC<Ou$PNlHg!BzU
zJx@SBIYVXgb&HV)3qu;`>_@%btmsF6rF4QgatPHM!O|^h^X?i^)Amxl=0r{@q#ZC{
z9$<3Rf4psAd~Bi1?4+0D*V{$iQr$0csQtU5kiqDY`yIDN_QrA&O9X@;tsVmj^&jh=
zhc|KS!wyur<|X07c$Yb4^tK&3cSAR4pFLM8ypz~_OayNVSpqaAUecG0O2x%!cAUE<
zQTl~<<-Dx5M7|#n>Dty;gMBL-{|`G%py~Zsh_($bWuTZ(FBmpw7+$6wuf1mTRtG5%
zJA4ADlU}IbxHA_Wq$4Okz;~GT&<*d8Dd%rF+m~$Uq~#IV)N98eQm{gPNcIUaA@ZW2
z)-h_6Y7Py!dS~oYDz7JH6JAL@-$_xDEF>kS(iyT<z^y<0k!JyW6@|&~62X^j81313
zAhT6)Sg_5uc{xqJpr8H?N<1~(tY@c(S=<u9F~9gglywWDNm`q)8c)q|2-#m5#+Gh=
z1Gls9qr+Rp`u`rr6d8CF+6&{SAz8pqLNUtvlB`i(az@PFI{DPE<njl{cI@_y%q}uk
zd`@{>ui$XVMH;;m8upav8xo**kEVZmlYV;Z$EYtkTW2m)g@p^EV*!e?zygOwc;?9W
zI&C?)e-&Tu^Dg6LTlIQV#{Q$cgPcr8(*zFhs?pIc7pUMkiBkcDYOZF9Y^GjHj*wpk
zjM^Zx&9gMtK%~Sv@pUrBj`$bCv3Ks1_!Le@6+2-0BCz%Nt}2(f!O-w?A8OBuY%x|V
zqu0<d0-u4kaqCbdy|(XCa*Kos{bsu^!AtauyoAuR-a@9vPk+4QG4d?1Aep?~ZPu;d
zS08JYT&1Kf4TOQ+o-;r3y+(35%#g5s<%_&-0e{zNSW5d<7g{TRi_LVh)8j7^2Bacr
zn1R8NMo%VXEn=j4`o(<KsONP+b_hHlXrUDbc9M20WR<^k264%laN7gU@-D`b2FjcI
zm(MHF!wMa`S{I5N7;i}gTrh(AS&X3oMT4wlvP#d5mBfspC;z3L)Is4LSOc~4Bngx=
zzfL~-FI*1Fyj)W!RMPm>{cnvV^?0adkgL$1LxM-(_?}Z1MJ8@%A;NUeI47%Oy1ia1
zZg<=|w7@(hQNp_RK&a2tnx5{HbI;r$iwQ<h&;Ae=xZQ@}yrEGn-ucq3X`vv)u1=4|
z5Lb1V;FY5r`$z`=+Cll-DYUpn4eIP}*G6KbN73w&CY^=$o^T9;#2kfKToWn)MX((c
zXRS_be~QWHcp4R><Dt7-9d*A%Xe1<jox~#9Yk5zk-y}s9hm9~O=wDJ?pd|U=Q0f3i
z-pt5sy%-P5%7Z0pU$0FQOc;URcfiL_5;?WI?&6pX#)gma;y~$y$?<o6bc&`Te)lP3
z&e;A2HW}^u1h4AXWoFi7FR+F_MK%yMkaSmZu8BHAq_uz<-;cv*T*}#hUh4Bd&`oC^
zGCwjTF!eA<CN+Id3vQz~I*QZ2$Sdd)K!wAR8y(S7s(CJxq=Rg@q*nOmO^N2)EPRm6
zZUL>e$Vd95AX)em>ADs(V$76t^0bkHrg50CRpQ%K#?iT&FNMANa7jLie#@m=s1ppR
zT;K&C!{6OVmsw@IOo`aE&<*nfp1t(j$9)T$#f#o!#!YslR71aoyK&ycJ-kerF(~<9
zldFddAIo-<Qblw3`G4R^4P}qDLhafmDhORFR<WjR*)4)7Ewl98f-~%pGNKm=a0Q9f
z1%)wz4zrh5_&*e4zL2egYmKnv&x1_aqW?3)9n{Z{WlsslYPF_MfgAY}FEL9=j3!)x
zxb^Zj`-wNJ)VC<JN3VKUP8w(Qm*$jF)aE}@3;FAqw7m1}`pDm(bw;vMfco3tOpn8i
z=c1l0$>Llk($gplof2JG*gPoq8XK?Hve>Yv*+ov0ES{AUEOFERxvnOVfR4s6o2fFV
z8q1kbZ}hV+UJbtyjTyI3v?=KRsU>_F+Bn0Gc-uAvRdR8t^d&|(_geCRXTRDcsUv8%
zs=qW<^&%)b09I`QB$8R%u{2J!zXie`y*t!~a3=bl0}fN8r?*Pek(Hu7E0BkUbxLPT
zF&F1=oW0&Yj+Wkw?KgvHG`K;E3G<EBslv1E4YeYOh%K^+(fd9ZW(-B7tKmR<U@%i>
z;fQ9%l7__CWU^w<4T*xB*<`3c>?|bm22;uKGuKp+zdza~l0(k#iI8d};;A|i&iYQK
zdiXsPJz06EEnJ(j3W}Fm;YkRR(e=k{MTmdIE6USDl=S+e88HU>Qx~@HZ#&u(AjboP
zTT+^1w10+_jR}PEE|%U0{<XEwANfyFu^?>#_bNtj8=*ZzF;rWi6c!AoxAt0_y_UTZ
zW?5i8QsDd7Soie7`nfGT)HWmum=olK;o{n9R%07a2}#Sb+Br-+Uh?T{KT|(`X@4^F
zMEK`>qOLt(JZ5}ZcokeuggUugq^JtMYihw|o`;1+`9-{5x!lZ#TCQ^T4Gh}r>WH4X
zj1~4X5RBF{tUNX4(_ljr<c`~QfiE;eRU~}Ul;KFj?jjPpe|!cP8*?~@eI=MaZbxDK
z#hV4M{VY!=zs|7Rk*?Pl+kjpPQ#ev&PGQr&YC&+)ou1pa3;8JDzLd&4dzkncn2)3k
z#FE_^hNlE<%Q<-1-)Xg;8-8eR>2NWMG%6qu-yoZ!UxhC_P2|0OMLQ)OHM`ZRB$Jx9
zkN&;iR#BTofZzY&&*)fZWL!juiTY^~TiNPEN+x=nDTw&sb1BCC$ef;1Hcl{#<u1!O
zvll#n346Xb6|aZGKFFkj3vpoIhDunMlZr=$S=@IR4(|+-OhN6W>Z#7UvLpSXWEW=_
z{JsebH)6YkY+aW=BaJ_3x<xeNU!0o!_{Vs;&#C&HW$5!PLeuw8F<@%bsR;PfhrVy%
z6T`~r!de5Fx+b5EC3G0H9|5(jC}uzi=W0~B(*}wfn?<J0YrXJ8c9I+d=Px~16Et1#
z^v}-wgEEteOxdI}a%hoTM|@#*p7LW$i|Jm-umc}$ikY_r8?p5~u#(LL`ddu@j)b~R
zuROB4**pB?osKleTrFkU1n=}UQNh}WwH+P~xDMXv04a=-47-S32aU67(abcSf>;0a
zd4;JujyOtjlYE)buMR>wyNE&zrIsNR5Ar3?>jm3snti*(@VC8`xIf?{M;aaXnE9*q
z;&K5k$H?wdIiWHVrwq^)q4MIehFWNmwi_US^OAfAl`0;jpFI#{c{Q#w^S(5+m4olr
zA5|@?c)@L{hJ;fW4lH1NgYg)DCUj{teDmVimEoosw?E2Q%X<(h3werJC_qJRb@rg+
zIyP(nv?9y_AuVgGT`sN<pp4loWNLFp-8@{uV_3;rVD5N8U0BuwLa)hxWf~*7C_YaR
z*OOJ(<MB^Iha{|b@8YCge(9K<@mh(0wVuSo5VXv37R9h=_x7}m$1DLf0n7iD2lTuF
zEf?#-$TJ<C7s*K}NV(f`ZZ+q3(nN7V`h;ym)Y+a{M+v^wiX@#Xla@w^<G`7nZ==Ux
z?dGWHL5V(cypD8anSEy{T|vzo_{s9>H}neBkdcBlq(h79+MO4Q8y%b6m#+K4=JaV!
zs;!cmIuCoZ<Bk+gn$qSjGTY%hXA;>fG%(&PL!YnxozC!i>FO?Rq@Dgz8AAgBh|ibz
z1Z$04BqBopDZL`y?G()QDaK5-kCQ4spvB^5Gi4E2<U#Uey^4QwEw69j3G(-lP7s~8
z_Cxd4Ag(*5*#ceN_Stn2ib%U3RuGdg6eU}Izia-n2US|sQ$Nv<U%EbiiV;DXSYGW~
ze(b@upsrup4?dHeANHbHB?$`02B;67lGBp+TeR(_eQ8Ml(lv6vVqIvDep$jI8!SQc
zq#;opO*@n(Y50PR5lLU_>k3nus>xeU?{4;J#I`XdGn_n!4%py%DAjVtta^6Q7z6PW
zSO=-rDjNCQ4K*#5vic_Gew%+upP_>rHtEhPX{d=5A1u6S=_SweLh`k3$?08#qi*96
zTOfhIKa?{0YR?O-G2;}zk~7{>S!Fu29{PQpuTa$grmParVTW`rf$asF_XslBdmoCq
z4tXViwG8IZ3K5nJ9coVQ=7KQAh+0RZr-u2!@@`T8Vv7;x#-H7y<dG+c0p`@R8x%pj
zf}-{YE#(=kyOMtZO<vmY2d(URa=^^!M@JUMC>`mDRU+H$#^;ogtUFCXO-5wt<rZ6}
z{0mC3tXffz^ml_fPxE=CL@9&jzd#MEFr@6|JLtb+_&&iMW0%9*vK@Fy$u~hf>XbO^
zwO55+TS9)%loiDyPZqeL`oAOM$zuk@-}{e6SQH*Oc}Qc7txh|nw2U5z&bqs9288?I
zOfYuEWwTZUy>>;9TEk6WlYx8$=X9M(6UhxnEHw<62>$zY3>y&5A#U}Dhmu6^rHm?l
zCV3?Au9sYR_%{0H+YyZoe*b*|YOd%Lw>!`@RAp0tecDO*iwW^5$m?TXrG`JAn^p^q
zl-le*YkB<D8#~2O>*`FIe_d`MBUr<)JOgc|1W=Ue|DOLx65s%p;}2=iXa>V9SEbq^
OChjR~-pRjh5%fP`|GmQi

literal 0
HcmV?d00001

diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/tasks/linux_landing_page.yml b/collections/ansible_collections/demo/reporting/roles/report_server/tasks/linux_landing_page.yml
new file mode 100644
index 0000000..30419e3
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/tasks/linux_landing_page.yml
@@ -0,0 +1,34 @@
+---
+- include_vars: "{{ ansible_system }}.yml"
+
+- name: get reports
+  ansible.builtin.find:
+    paths: "{{ doc_root }}/{{ reports_dir }}"
+    patterns: '*.html'
+  register: reports
+  check_mode: no
+
+- name: publish landing page
+  ansible.builtin.template:
+    src: linux_report.j2
+    dest: "{{ doc_root }}/index.html"
+  check_mode: no
+
+- name: copy CSS over
+  ansible.builtin.copy:
+    src: "css"
+    dest: "{{ doc_root }}"
+    directory_mode: true
+  check_mode: no
+
+- name: copy logos over
+  ansible.builtin.copy:
+    src: "{{ item }}" 
+    dest: "{{ doc_root }}"
+    directory_mode: true
+  loop:
+    - "webpage_logo.png"
+    - "redhat-ansible-logo.svg"
+    - "report.png"
+  check_mode: no
+    
diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/tasks/main.yml b/collections/ansible_collections/demo/reporting/roles/report_server/tasks/main.yml
new file mode 100644
index 0000000..a275ceb
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/tasks/main.yml
@@ -0,0 +1,6 @@
+---
+- include_tasks: apache.yml
+  when: ansible_system == 'Linux'
+
+- include_tasks: iis.yml
+  when: ansible_system == 'Win32NT'
diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/tasks/windows_landing_page.yml b/collections/ansible_collections/demo/reporting/roles/report_server/tasks/windows_landing_page.yml
new file mode 100644
index 0000000..76574c9
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/tasks/windows_landing_page.yml
@@ -0,0 +1,34 @@
+---
+- include_vars: "{{ ansible_system }}.yml"
+
+- name: get reports
+  ansible.windows.win_find:
+    paths: "{{ doc_root }}/{{ reports_dir }}"
+    patterns: '*.html'
+  register: reports
+  check_mode: no
+
+- name: publish landing page
+  ansible.builtin.win_template:
+    src: windows_report.j2
+    dest: "{{ doc_root }}/index.html"
+  check_mode: no
+
+- name: copy CSS over
+  ansible.builtin.win_copy:
+    src: "css"
+    dest: "{{ doc_root }}"
+    directory_mode: true
+  check_mode: no
+
+- name: copy logos over
+  ansible.builtin.win_copy:
+    src: "{{ item }}" 
+    dest: "{{ doc_root }}"
+    directory_mode: true
+  loop:
+    - "webpage_logo.png"
+    - "redhat-ansible-logo.svg"
+    - "report.png"
+  check_mode: no
+    
diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/templates/header.j2 b/collections/ansible_collections/demo/reporting/roles/report_server/templates/header.j2
new file mode 100644
index 0000000..6d504d0
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/templates/header.j2
@@ -0,0 +1,15 @@
+
+   
+  <div class="wrapper">
+    <header>
+      <div class="header-container">
+        <a href="https://ansible.com">
+          <img
+            class="header-logo"
+            src="redhat-ansible-logo.svg"
+            title="Red Hat Ansible"
+            alt="Red Hat Ansible"
+          />
+        </a>
+      </div>
+    </header>
\ No newline at end of file
diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/templates/linux_report.j2 b/collections/ansible_collections/demo/reporting/roles/report_server/templates/linux_report.j2
new file mode 100644
index 0000000..201d930
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/templates/linux_report.j2
@@ -0,0 +1,42 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title> Ansible Linux Automation Report </title>
+  <link rel="stylesheet" type="text/css" href="//fonts.googleapis.com/css?family=Open+Sans" />
+  <link rel="stylesheet" href="//code.jquery.com/ui/1.12.1/themes/base/jquery-ui.css">
+  <link rel="stylesheet" href="css/new.css">
+<script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js"></script>
+<script src="https://code.jquery.com/jquery-1.12.4.js"></script>
+<script src="https://code.jquery.com/ui/1.12.1/jquery-ui.js"></script>
+<script src="https://www.kryogenix.org/code/browser/sorttable/sorttable.js"></script>
+</head>
+<body>
+<div class="wrapper">
+  {% include 'header.j2' %}
+<section>
+<center>
+<h1>Ansible Automation Reports</h1>
+<h3><input type="search" placeholder="Search..." class="form-control search-input" data-table="main_net_table"/>
+</center>
+<table class="table table-striped mt32 main_net_table">
+<tbody>
+{% for report in reports.files %}
+        {% set page = report.path.split('/')[-1] %}
+        <tr>
+            <td class="summary_info">
+              <div id="hostname">
+                <p class="hostname"> <img class="router_image" src="report.png"></p>
+              </div>  
+            </td>
+            <td>
+              <a href="{{ reports_dir }}/{{ page }}"> {{ page }} <a> 
+            </td>
+{% endfor %}
+</tbody>
+</table>
+<center><p>Created with</p><br><img src="webpage_logo.png" width="300">
+</center>
+</section>
+</div>
+</body>
+</html>
diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/templates/windows_report.j2 b/collections/ansible_collections/demo/reporting/roles/report_server/templates/windows_report.j2
new file mode 100644
index 0000000..5690437
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/templates/windows_report.j2
@@ -0,0 +1,42 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title> Ansible Linux Automation Report </title>
+  <link rel="stylesheet" type="text/css" href="//fonts.googleapis.com/css?family=Open+Sans" />
+  <link rel="stylesheet" href="//code.jquery.com/ui/1.12.1/themes/base/jquery-ui.css">
+  <link rel="stylesheet" href="css/new.css">
+<script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js"></script>
+<script src="https://code.jquery.com/jquery-1.12.4.js"></script>
+<script src="https://code.jquery.com/ui/1.12.1/jquery-ui.js"></script>
+<script src="https://www.kryogenix.org/code/browser/sorttable/sorttable.js"></script>
+</head>
+<body>
+<div class="wrapper">
+  {% include 'header.j2' %}
+<section>
+<center>
+<h1>Ansible Automation Reports</h1>
+<h3><input type="search" placeholder="Search..." class="form-control search-input" data-table="main_net_table"/>
+</center>
+<table class="table table-striped mt32 main_net_table">
+<tbody>
+{% for report in reports.files %}
+        {% set page = report.path.split('\\')[-1] %}
+        <tr>
+            <td class="summary_info">
+              <div id="hostname">
+                <p class="hostname"> <img class="router_image" src="report.png"></p>
+              </div>  
+            </td>
+            <td>
+              <a href="{{ reports_dir }}/{{ page }}"> {{ page }} <a> 
+            </td>
+{% endfor %}
+</tbody>
+</table>
+<center><p>Created with</p><br><img src="webpage_logo.png" width="300">
+</center>
+</section>
+</div>
+</body>
+</html>
diff --git a/collections/ansible_collections/demo/reporting/roles/report_server/vars/Win32NT.yml b/collections/ansible_collections/demo/reporting/roles/report_server/vars/Win32NT.yml
new file mode 100644
index 0000000..ac4e675
--- /dev/null
+++ b/collections/ansible_collections/demo/reporting/roles/report_server/vars/Win32NT.yml
@@ -0,0 +1,3 @@
+---
+doc_root: C:\Inetpub\wwwroot
+reports_dir: reports
diff --git a/collections/ansible_collections/demo/satellite/roles/register_host/defaults/main.yml b/collections/ansible_collections/demo/satellite/roles/register_host/defaults/main.yml
new file mode 100644
index 0000000..ce441c2
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/register_host/defaults/main.yml
@@ -0,0 +1,4 @@
+---
+instance_name: "{{ inventory_hostname | regex_replace('_','-') }}"
+activation_key: "{{ 'RHEL' + ansible_distribution_major_version + '_' + env }}"
+rex_user: root # "{{ ansible_user }}"
diff --git a/collections/ansible_collections/demo/satellite/roles/register_host/tasks/main.yml b/collections/ansible_collections/demo/satellite/roles/register_host/tasks/main.yml
new file mode 100644
index 0000000..0f158ae
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/register_host/tasks/main.yml
@@ -0,0 +1,67 @@
+---
+- name: verify operating system
+  assert:
+    that:
+      - ansible_os_family == 'RedHat'
+      - (ansible_distribution_major_version == '7') or (ansible_distribution_major_version == '8')
+
+- name: set hostname
+  hostname:
+    name: "{{ instance_name }}"
+  
+- name: remove rhui client packages
+  yum:
+      name: 
+        - google-rhui-client*
+        - rh-amazon-rhui-client*
+      state: removed
+
+- name: get current repos
+  command:
+    cmd: ls /etc/yum.repos.d/
+  register: repos
+  changed_when: False
+
+- name: remove existing rhui repos
+  file:
+    path: "/etc/yum.repos.d/{{ item }}"
+    state: absent
+  loop: "{{ repos.stdout_lines }}"
+
+- name: install satellite certificate
+  yum:
+    name: "{{ satellite_url }}/pub/katello-ca-consumer-latest.noarch.rpm"
+    state: present
+    validate_certs: no
+    disable_gpg_check: true
+
+- name: register system via subscription-mangler
+  redhat_subscription:
+    state: present
+    activationkey: "{{ activation_key }}"
+    consumer_name: "{{ instance_name }}"
+    org_id: "{{ org_id | default('Default_Organization')}}"
+  throttle: 1
+
+- name: include repos
+  include_vars: "vars/{{ ansible_distribution + ansible_distribution_major_version }}.yml"
+
+- name: enable repos
+  rhsm_repository:
+    name: "{{ rhsm_enabled_repos }}"
+    state: enabled
+
+- name: install satellite client
+  yum:
+    name:
+      - katello-host-tools
+      - katello-host-tools-tracer
+    state: latest
+    
+- name: enable remote execution
+  authorized_key:
+    user: "{{ rex_user }}"
+    state: present
+    key: "{{ satellite_url }}:9090/ssh/pubkey"
+    validate_certs: no
+    
diff --git a/collections/ansible_collections/demo/satellite/roles/register_host/vars/RedHat7.yml b/collections/ansible_collections/demo/satellite/roles/register_host/vars/RedHat7.yml
new file mode 100644
index 0000000..c529625
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/register_host/vars/RedHat7.yml
@@ -0,0 +1,4 @@
+---
+rhsm_enabled_repos:
+  - rhel-7-server-rpms
+  #- rhel-7-server-satellite-maintenance-6.11-rpms
diff --git a/collections/ansible_collections/demo/satellite/roles/register_host/vars/RedHat8.yml b/collections/ansible_collections/demo/satellite/roles/register_host/vars/RedHat8.yml
new file mode 100644
index 0000000..eb20ab3
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/register_host/vars/RedHat8.yml
@@ -0,0 +1,5 @@
+---
+rhsm_enabled_repos:
+  - rhel-8-for-x86_64-baseos-rpms
+  - rhel-8-for-x86_64-appstream-rpms
+  - satellite-client-6-for-rhel-8-x86_64-rpms
diff --git a/collections/ansible_collections/demo/satellite/roles/scap_client/Changelog.md b/collections/ansible_collections/demo/satellite/roles/scap_client/Changelog.md
new file mode 100644
index 0000000..4bb95ba
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/scap_client/Changelog.md
@@ -0,0 +1,17 @@
+# Change Log
+All notable changes to this project will be documented in this file.
+## [0.0.1] - 20/03/2018 - First Release
+### Added
+- Install required packages
+- Obtain data from satellite API
+- Configure crontab and config.yaml
+
+### Changed
+
+### Removed
+
+### Pending
+- Allow a list of policies to be applied (only one is allowed at the moment)
+- Get schedule from the policy instead of configure it using parameters
+- Configure URI tasks to ask capsule instead of Satellite (for hosts without network access to the satellite api)
+- Add tests to vars to be correctly formatted
diff --git a/collections/ansible_collections/demo/satellite/roles/scap_client/LICENSE b/collections/ansible_collections/demo/satellite/roles/scap_client/LICENSE
new file mode 100644
index 0000000..a80e2cd
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/scap_client/LICENSE
@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2018 morenod
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
diff --git a/collections/ansible_collections/demo/satellite/roles/scap_client/README.md b/collections/ansible_collections/demo/satellite/roles/scap_client/README.md
new file mode 100644
index 0000000..3dc42dc
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/scap_client/README.md
@@ -0,0 +1,45 @@
+# Openscap client configuration Role
+
+## About
+
+Role created to configure a client to execute openscap policies based on the information obtained from a Red Hat Satellite/Foreman Host.
+
+Steps and configuration changes obtained from the [foreman_scap_client puppet module](https://github.com/theforeman/puppet-foreman_scap_client)
+
+The role has to be executed with root permission, using the root user or via sudo because it will modify system parameters.
+
+## Ansible Requirements
+
+RPM Repositories have to be enabled and containing required packages.
+
+## Configuration parameters
+
+### Required vars to be overwritten
+
+- `satellite_server`: Used to obtain policy parameters
+- `satellite_username`: Used to obtain policy parameters
+- `satellite_password`: Used to obtain policy parameters
+- `capsule_server`: Used to configure openscap client config.yaml file
+- `capsule_port`: Used to configure openscap client config.yaml file
+- `policy_name`: Name of the SCAP Policy to be configured
+
+## Example playbook
+
+```yml
+---
+- name: openscap client
+  hosts: <<host list>>
+  remote_user: <<user>>
+  gather_facts: true
+  become: yes
+  become_user: root
+  become_method: sudo
+  vars:
+    satellite_server: satellite.example.com
+    satellite_username`: admin
+    satellite_password`: verycomplexpassword
+    capsule_server`: capsule.example.com
+    policy_name`: 'rhel7-pci'
+  roles:
+        - ansible-ipaRegister
+```
diff --git a/collections/ansible_collections/demo/satellite/roles/scap_client/defaults/main.yaml b/collections/ansible_collections/demo/satellite/roles/scap_client/defaults/main.yaml
new file mode 100644
index 0000000..255b0ab
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/scap_client/defaults/main.yaml
@@ -0,0 +1,12 @@
+foreman_server_url: "{{ lookup('env', 'SATELLITE_SERVER') }}"
+foreman_username: "{{ lookup('env', 'SATELLITE_USERNAME') }}"
+foreman_password: "{{ lookup('env', 'SATELLITE_PASSWORD') }}"
+foreman_validate_certs: "{{ lookup('env', 'FOREMAN_VALIDATE_CERTS') | default(true) }}"
+capsule_server: "{{ foreman_server_url }}"
+capsule_port: '9090'
+policy_name: 'all'
+policy_scan: "{{ policy_name }}"
+crontab_hour: 2
+crontab_minute: 0
+crontab_weekdays: 0
+foreman_operations_scap_client_secure_logging: true
diff --git a/collections/ansible_collections/demo/satellite/roles/scap_client/meta/main.yml b/collections/ansible_collections/demo/satellite/roles/scap_client/meta/main.yml
new file mode 100644
index 0000000..61d2458
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/scap_client/meta/main.yml
@@ -0,0 +1,3 @@
+galaxy_info:
+  author: morenod
+  description: Role created to configure a client to execute openscap policies based on the information obtained from a Red Hat Satellite/Foreman Host.
\ No newline at end of file
diff --git a/collections/ansible_collections/demo/satellite/roles/scap_client/tasks/main.yaml b/collections/ansible_collections/demo/satellite/roles/scap_client/tasks/main.yaml
new file mode 100644
index 0000000..1f8d01a
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/scap_client/tasks/main.yaml
@@ -0,0 +1,85 @@
+---
+- name: Install openscap client packages
+  yum:
+    name:
+     - openscap-scanner
+     - rubygem-foreman_scap_client
+    state: present
+
+- name: Get Policy parameters
+  uri:
+    url: "{{ foreman_server_url }}/api/v2/compliance/policies"
+    method: GET
+    user: "{{ foreman_username }}"
+    password:  "{{ foreman_password }}"
+    force_basic_auth: yes
+    body_format: json
+    validate_certs: False
+  register: policies
+  no_log: "{{ foreman_operations_scap_client_secure_logging }}"
+
+- name: Build policy {{ policy_name }} parameters
+  set_fact:
+    policy: "{{ policy | default([]) }} + {{ [item] }}"
+  loop: "{{policies.json.results}}"
+  when: item.name in policy_name or policy_name == 'all'
+
+- name: Fail if no policy found with required name
+  fail:
+  when: policy is not defined
+
+- name: Get scap content information
+  uri:
+    url: "{{ foreman_server_url }}/api/v2/compliance/scap_contents/{{item.scap_content_id}}"
+    method: GET
+    user: "{{ foreman_username }}"
+    password: "{{ foreman_password }}"
+    force_basic_auth: yes
+    body_format: json
+    validate_certs: False
+  register: scapcontents
+  loop: "{{ policy }}"
+  no_log: "{{ foreman_operations_scap_client_secure_logging }}"
+
+- name: Get tailoring content information
+  uri:
+    url: "{{ foreman_server_url }}/api/v2/compliance/tailoring_files/{{item.tailoring_file_id}}"
+    method: GET
+    user: "{{ foreman_username }}"
+    password: "{{ foreman_password }}"
+    force_basic_auth: yes
+    body_format: json
+    validate_certs: False
+  register: tailoringfiles
+  when: item.tailoring_file_id | int > 0 | d(False)
+  loop: "{{ policy }}"
+  no_log: "{{ foreman_operations_scap_client_secure_logging }}"
+
+- name: Build scap content parameters
+  set_fact:
+    scap_content: "{{ scap_content | default({}) | combine({item.json.id: item.json }) }}"
+  loop: "{{ scapcontents.results }}"
+
+- name: Build tailoring content parameters
+  set_fact:
+    tailoring_files: "{{ tailoring_files | default({}) | combine({item.json.id: item.json }) }}"
+  when: item.json is defined
+  loop: "{{ tailoringfiles.results }}"
+
+- name: Apply openscap client configuration template
+  template:
+    src: openscap_client_config.yaml.j2
+    dest: /etc/foreman_scap_client/config.yaml
+    mode: 0644
+    owner: root
+    group: root
+
+#- name: Configure execution crontab
+#  cron:
+#    name: "Openscap Execution"
+#    cron_file: 'foreman_openscap_client'
+#    job: '/usr/bin/foreman_scap_client {{policy.id}} > /dev/null'
+#    weekday: "{{crontab_weekdays}}"
+#    hour: "{{crontab_hour}}"
+#    minute: "{{crontab_minute}}"
+#    user: root
diff --git a/collections/ansible_collections/demo/satellite/roles/scap_client/templates/openscap_client_config.yaml.j2 b/collections/ansible_collections/demo/satellite/roles/scap_client/templates/openscap_client_config.yaml.j2
new file mode 100644
index 0000000..264cc8b
--- /dev/null
+++ b/collections/ansible_collections/demo/satellite/roles/scap_client/templates/openscap_client_config.yaml.j2
@@ -0,0 +1,47 @@
+# Foreman proxy to which reports should be uploaded
+:server: {{ capsule_server | urlsplit('hostname') }}
+:port: {{ capsule_port }}
+
+## SSL specific options ##
+# Client CA file.
+# It could be Puppet CA certificate (e.g., '/var/lib/puppet/ssl/certs/ca.pem')
+# Or (recommended for client reporting to Katello) subscription manager CA file, (e.g., '/etc/rhsm/ca/katello-server-ca.pem')
+:ca_file: '/etc/rhsm/ca/katello-server-ca.pem'
+# Client host certificate.
+# It could be Puppet agent host certificate (e.g., '/var/lib/puppet/ssl/certs/myhost.example.com.pem')
+# Or (recommended for client reporting to Katello) consumer certificate (e.g., '/etc/pki/consumer/cert.pem')
+:host_certificate: '/etc/pki/consumer/cert.pem'
+#
+# Client private key
+# It could be Puppet agent private key (e.g., '/var/lib/puppet/ssl/private_keys/myhost.example.com.pem')
+# Or (recommended for client reporting to Katello) consumer private key (e.g., '/etc/pki/consumer/key.pem')
+:host_private_key: '/etc/pki/consumer/key.pem'
+# policy (key is id as in Foreman)
+{% for item in policy %} 
+{{ item.id }}:
+{% if item.tailoring_file_id | int > 0 | d(False) %}
+{% for profile in tailoring_files[item.tailoring_file_id].tailoring_file_profiles %}
+{% if profile.id == item.tailoring_file_profile_id %}
+  :profile: {{profile.profile_id}}
+{% endif%}
+{% endfor %}
+  :content_path: '/var/lib/openscap/content/{{scap_content[item.scap_content_id].digest}}.xml'
+  # Download path
+  # A path to download SCAP content from proxy
+  :download_path: '/compliance/policies/{{item.id}}/content/{{scap_content[item.scap_content_id].digest}}'
+  :tailoring_path: '/var/lib/openscap/content/{{tailoring_files[item.tailoring_file_id].digest}}.xml'
+  :tailoring_download_path: '/compliance/policies/{{item.id}}/tailoring/{{tailoring_files[item.tailoring_file_id].digest}}'
+{% else %}
+{% for profile in scap_content[item.scap_content_id].scap_content_profiles %}
+{% if profile.id == item.scap_content_profile_id %}
+  :profile: {{profile.profile_id}}
+{% endif%}
+{% endfor %}
+  :content_path: '/var/lib/openscap/content/{{scap_content[item.scap_content_id].digest}}.xml'
+  # Download path
+  # A path to download SCAP content from proxy
+  :download_path: '/compliance/policies/{{item.id}}/content/{{scap_content[item.scap_content_id].digest}}'
+  :tailoring_path: ''
+  :tailoring_download_path: ''
+{% endif %}
+{% endfor %}
diff --git a/collections/requirements.yml b/collections/requirements.yml
index 6a1299e..a4fe9b1 100644
--- a/collections/requirements.yml
+++ b/collections/requirements.yml
@@ -23,6 +23,9 @@ collections:
     version: 1.13.0
   - name: amazon.aws
     version: 3.1.1
+  #satellite
+  - name: redhat.satellite
+    version: 3.3.0
   #network
   - name: cisco.ios
     version: 3.1.0
@@ -30,4 +33,3 @@ collections:
     version: 3.0.0
   - name: cisco.iosxr
     version: 3.0.0
-
diff --git a/linux/ec2_register.yml b/linux/ec2_register.yml
index b1cee04..7ce0d4f 100644
--- a/linux/ec2_register.yml
+++ b/linux/ec2_register.yml
@@ -40,6 +40,7 @@
       name: "https://{{ sat_url }}/pub/katello-ca-consumer-latest.noarch.rpm"
       state: present
       validate_certs: no
+      disable_gpg_check: true
     when: sat_url is defined
 
   - name: manage repos with subscription mangler
@@ -54,12 +55,6 @@
       activationkey: "{{ activation_key }}"
       org_id: "{{ org_id }}"
 
-  - name: disable htb repo
-    community.general.rhsm_repository:
-      name: rhel-7-server-htb*
-      state: disabled
-    ignore_errors: yes
-
   - name: configure Red Hat insights
     import_role:
       name: redhat.insights.insights_client
@@ -68,4 +63,4 @@
       insights_tags:
         env: "{{ env }}"
         purpose: demo
-        group: "{{ ansible_group }}"
+        group: "{{ insights_tag }}"
diff --git a/linux/setup.yml b/linux/setup.yml
index b86cbf0..1e518af 100644
--- a/linux/setup.yml
+++ b/linux/setup.yml
@@ -11,7 +11,7 @@ controller_components:
   - job_templates
 
 controller_credential_types:
-  - name: "Insights Collection"
+  - name: Insights Collection
     kind: cloud
     inputs:
       fields:
@@ -34,6 +34,13 @@ controller_credentials:
     inputs:
       insights_user: REPLACEME
       insights_password: REPLACEME
+  - name: Satellite Inventory
+    credential_type: Red Hat Satellite 6
+    organization: Default
+    inputs:
+      host: https://satellite.example.com
+      username: admin
+      password: ansible123!
 
 controller_inventory_sources:
   - name: Insights Inventory
@@ -42,6 +49,25 @@ controller_inventory_sources:
     source_project: Ansible official demo project
     source_path: linux/inventory.insights.yml
     credential: Insights Inventory
+  - name: Satellite Inventory
+    inventory: Workshop Inventory
+    source: satellite6
+    overwrite: true
+    credential: Satellite Inventory
+    source_vars:
+      hostnames:
+        - name.split('.')[0]
+      groups:
+        patch_bugs: foreman_content_facet_attributes.errata_counts.bugfix
+        patch_enhancements: foreman_content_facet_attributes.errata_counts.enhancement
+        patch_security: foreman_content_facet_attributes.errata_counts.security
+      keyed_groups:
+              - prefix: env
+                key: foreman_content_facet_attributes.lifecycle_environment_name
+              - prefix: cv
+                key: foreman_content_facet_attributes.content_view_name
+              - prefix: os
+                key: foreman_operatingsystem_name
 
 
 controller_templates:
@@ -57,8 +83,9 @@ controller_templates:
     - "Workshop Credential"
     survey_enabled: true
     extra_vars:
-      activation_key: undef
-      org_id: undef
+      activation_key: !unsafe "RHEL{{ ansible_distribution_major_version }}_{{ env }}"
+      org_id: Default_Organization
+      sat_url: satellite.example.com
     survey:
       name: ''
       description: ''
@@ -77,7 +104,7 @@ controller_templates:
           required: true
         - question_name: Ansible Inventory Group (and Insights tag) to be created
           type: text
-          variable: ansible_group
+          variable: insights_tag
           required: true
 
   - name: "LINUX / Troubleshoot"
@@ -135,6 +162,7 @@ controller_templates:
     inventory: "Workshop Inventory"
     project: "Ansible official demo project"
     playbook: "linux/patching.yml"
+    execution_environment: Default execution environment
     notification_templates_started: Telemetry
     notification_templates_success: Telemetry
     notification_templates_error: Telemetry
@@ -230,6 +258,7 @@ controller_templates:
     project: "Ansible official demo project"
     playbook: linux/fact_scan.yml
     inventory: Workshop Inventory
+    execution_environment: Default execution environment
     notification_templates_started: Telemetry
     notification_templates_success: Telemetry
     notification_templates_error: Telemetry
@@ -295,6 +324,40 @@ controller_templates:
           variable: HOSTS
           required: true
 
+  - name: "LINUX / Install web console"
+    job_type: run
+    inventory: "Workshop Inventory"
+    project: "Ansible official demo project"
+    playbook: "linux/system_roles.yml"
+    notification_templates_started: Telemetry
+    notification_templates_success: Telemetry
+    notification_templates_error: Telemetry
+    diff_mode: yes
+    ask_job_type_on_launch: yes
+    extra_vars:
+      system_roles: 
+        - cockpit
+    credentials:
+      - "Workshop Credential"
+    survey_enabled: true
+    survey:
+      name: ''
+      description: ''
+      spec:
+        - question_name: Server Name or Pattern
+          type: text
+          variable: HOSTS
+          required: true
+        - question_name: Cockpit package load
+          type: multiplechoice
+          variable: cockpit_packages
+          default: minimal
+          choices:
+            - default
+            - minimal
+            - full
+          required: true
+
   - name: "LINUX / Compliance Enforce"
     job_type: run
     inventory: "Workshop Inventory"
diff --git a/satellite/README.md b/satellite/README.md
new file mode 100644
index 0000000..4e70bbd
--- /dev/null
+++ b/satellite/README.md
@@ -0,0 +1,27 @@
+# Satellite Demos
+
+## Table of Contents
+- [Satellite Demos](#satellite-demos)
+  - [Table of Contents](#table-of-contents)
+  - [About These Demos](#about-these-demos)
+    - [Jobs](#jobs)
+    - [Inventory](#inventory)
+  - [Suggested Usage](#suggested-usage)
+
+## About These Demos
+This category of demos shows examples of linux operations and management with Ansible Automation Platform and Red Hat Satellite Server. The list of demos can be found below. See the [Suggested Usage](#suggested-usage) section of this document for recommendations on how to best use these demos.
+
+### Jobs
+- [**LINUX / Register with Satellite**](server_register.yml) - Register a RHEL server with Red Hat Satellite.
+- [**LINUX / Compliance Scan with Satellite**](server_openscap.yml) - Run OpenSCAP scan and report to Satellite.
+- [**SATELLITE / Publish Content View Version**](satellite_publish.yml) - Publish a new version of a content view.
+- [**SATELLITE / Promote Content View Version**](satellite_promote.yml) - Promote a content view version to the next lifecycle environment.
+
+### Inventory
+
+A dymanic inventory is created to pull inventory hosts from Red Hat Satellite. Groups will automatically be created
+
+## Suggested Usage
+**Linux / Register with Satellite** - Register a server with Red Hat Satellite using an activation key in the format `RHEL<major version>_<environment>`.
+
+**SATELLITE / Publish Content View Version** - Publish a new version of a content view to start a patching process. By default this will publish the version and promote to the 'Dev' environment.
diff --git a/satellite/files/ssg-rhel7-ds-tailoring.xml b/satellite/files/ssg-rhel7-ds-tailoring.xml
new file mode 100644
index 0000000..f5d6d00
--- /dev/null
+++ b/satellite/files/ssg-rhel7-ds-tailoring.xml
@@ -0,0 +1,61 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xccdf:Tailoring xmlns:xccdf="http://checklists.nist.gov/xccdf/1.2" id="xccdf_scap-workbench_tailoring_default">
+  <xccdf:benchmark href="/tmp/scap-workbench-iwLkek/ssg-rhel7-ds.xml"/>
+  <xccdf:version time="2022-07-21T09:19:44">1</xccdf:version>
+  <xccdf:Profile id="xccdf_org.ssgproject.content_profile_stig_customized" extends="xccdf_org.ssgproject.content_profile_stig">
+    <xccdf:title xmlns:xhtml="http://www.w3.org/1999/xhtml" xml:lang="en-US" override="true">DISA STIG for Red Hat Enterprise Linux 7 [CUSTOMIZED]</xccdf:title>
+    <xccdf:description xmlns:xhtml="http://www.w3.org/1999/xhtml" xml:lang="en-US" override="true">This profile contains configuration checks that align to the
+DISA STIG for Red Hat Enterprise Linux V3R7.
+
+In addition to being applicable to Red Hat Enterprise Linux 7, DISA recognizes this
+configuration baseline as applicable to the operating system tier of
+Red Hat technologies that are based on Red Hat Enterprise Linux 7, such as:
+
+- Red Hat Enterprise Linux Server
+- Red Hat Enterprise Linux Workstation and Desktop
+- Red Hat Enterprise Linux for HPC
+- Red Hat Storage
+- Red Hat Containers with a Red Hat Enterprise Linux 7 image</xccdf:description>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rpm_verify_ownership" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_use_fips_hashes" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_verify_acls" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_verify_ext_attributes" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_antivirus" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_agent_mfetpd_running" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_mcafeetp_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mcafee_endpoint_security_software" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mcafee_security_software" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_endpoint_security_software" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_home" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_var" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_tmp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disk_partitioning" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sudo_remove_nopasswd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_deny" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_deny_root" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_interval" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_smartcard_packages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_smartcard_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_account_disable_post_pw_expiration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_account_expiration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_authorized_local_users" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_admin_username" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_password" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_firewalld_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_firewalld_activation" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_firewalld_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_firewalld_default_zone" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ruleset_modifications" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-firewalld" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_configure_name_resolution" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_home_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_postfix_prevent_unrestricted_relay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_relay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_cfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_harden_os" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mail" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_chronyd_or_ntpd_set_maxpoll" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ntp" selected="false"/>
+  </xccdf:Profile>
+</xccdf:Tailoring>
diff --git a/satellite/files/ssg-rhel8-ds-tailoring-stig-gui.xml b/satellite/files/ssg-rhel8-ds-tailoring-stig-gui.xml
new file mode 100644
index 0000000..1a17265
--- /dev/null
+++ b/satellite/files/ssg-rhel8-ds-tailoring-stig-gui.xml
@@ -0,0 +1,1562 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xccdf:Tailoring xmlns:xccdf="http://checklists.nist.gov/xccdf/1.2" id="xccdf_scap-workbench_tailoring_default">
+  <xccdf:benchmark href="/tmp/scap-workbench-ZNjUkt/ssg-rhel8-ds.xml"/>
+  <xccdf:version time="2022-07-28T10:15:15">1</xccdf:version>
+  <xccdf:Profile id="xccdf_org.ssgproject.content_profile_stig_gui_rhel8" extends="xccdf_org.ssgproject.content_profile_stig_gui">
+    <xccdf:title xmlns:xhtml="http://www.w3.org/1999/xhtml" xml:lang="en-US" override="true">DISA STIG with GUI for Red Hat Enterprise Linux 8 [CUSTOMIZED]</xccdf:title>
+    <xccdf:description xmlns:xhtml="http://www.w3.org/1999/xhtml" xml:lang="en-US" override="true">This profile contains configuration checks that align to the
+DISA STIG with GUI for Red Hat Enterprise Linux 8 V1R3.
+
+In addition to being applicable to Red Hat Enterprise Linux 8, DISA recognizes this
+configuration baseline as applicable to the operating system tier of
+Red Hat technologies that are based on Red Hat Enterprise Linux 8, such as:
+
+- Red Hat Enterprise Linux Server
+- Red Hat Enterprise Linux Workstation and Desktop
+- Red Hat Enterprise Linux for HPC
+- Red Hat Storage
+- Red Hat Containers with a Red Hat Enterprise Linux 8 image
+
+Warning: The installation and use of a Graphical User Interface (GUI)
+increases your attack vector and decreases your overall security posture. If
+your Information Systems Security Officer (ISSO) lacks a documented operational
+requirement for a graphical user interface, please consider using the
+standard DISA STIG for Red Hat Enterprise Linux 8 profile.</xccdf:description>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_remediation_functions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_aide" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_verify_ext_attributes" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_verify_acls" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_use_fips_hashes" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_scan_notification" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_periodic_cron_checking" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_check_audit_tools" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_aide_build_database" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_aide_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_software-integrity" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_fips" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_crypto_fips_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_etc_system_fips_exists" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_enable_fips_mode" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_enable_dracut_fips_module" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_crypto" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_openssl_use_strong_entropy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_harden_sshd_macs_opensshserver_conf_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_harden_sshd_macs_openssh_conf_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_harden_sshd_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_harden_sshd_ciphers_opensshserver_conf_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_harden_sshd_ciphers_openssh_conf_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_harden_ssh_client_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_harden_openssl_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_ssh_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_openssl_tls_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_openssl_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_libreswan_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_kerberos_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_gnutls_tls_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_bind_crypto_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_crypto-policies_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_certified-vendor" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_installed_OS_is_vendor_supported" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_installed_OS_is_FIPS_certified" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_endpoint_security_software" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mcafee_security_software" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mcafee_hbss_software" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_mcafee_hbss_pa" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_mcafee_hbss_accm" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_MFEhiplsm_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mcafee_endpoint_security_software" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_agent_mfetpd_running" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_mcafeetp_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mcafee_antivirus_definitions_updated" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_mcafee_cma_rt" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_mcafee_antivirus" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_nails_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_hids" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_antivirus" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_user_data_backups" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_integrity" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disk_partitioning" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_var_tmp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_var_log" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_var" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_usr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_tmp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_srv" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_opt" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_home" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_boot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_encrypt_partitions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_gnome" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_gnome_system_settings" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_user_admin" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_power_settings" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_geolocation" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_ctrlaltdel_reboot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_gnome_screen_locking" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_session_idle_user_locks" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_user_locks" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_user_info" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_mode_blank" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_lock_locked" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_lock_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_lock_delay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_idle_delay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_idle_activation_locked" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_screensaver_idle_activation_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_gnome_remote_access_settings" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_remote_access_encryption" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_remote_access_credential_prompt" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_gnome_network_settings" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_wifi_notification" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_wifi_create" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_gnome_media_settings" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_thumbnailers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_autorun" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_automount_open" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_automount" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_gnome_login_screen" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_gnome_gdm_disable_xdmcp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_gnome_gdm_disable_guest_login" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_gnome_gdm_disable_automatic_login" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_login_retries" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_lock_screen_on_smartcard_removal" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_enable_smartcard_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_user_list" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_disable_restart_shutdown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_enable_dconf_user_profile" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_db_up_to_date" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_gdm_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sudo_require_reauthentication" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sudoers_validate_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_system-tools" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_abrt-addon-python_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_tuned_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_abrt-cli_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_abrt-addon-ccpp_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_gssproxy_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_abrt-plugin-sosreport_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_pigz_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_geolite2-city_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_abrt-plugin-logger_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_iprutils_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_abrt-addon-kerneloops_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_geolite2-country_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_krb5-workstation_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_abrt-plugin-rhtsupport_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_subscription-manager_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_openscap-scanner_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_gnutls-utils_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_nss-tools_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_rng-tools_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_tar_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_dnf-plugin-subscription-manager_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_vim_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_libcap-ng-utils_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_rear_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_scap-security-guide_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_binutils_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ensure_gpgcheck_local_packages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_accounts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_accounts-restrictions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_root_logins" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_use_pam_wheel_for_su" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_securetty_root_login_console_only" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_root_path_default" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_restrict_serial_port_logins" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_shelllogin_for_systemaccounts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_root_webbrowsing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_password_auth_for_systemaccounts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_direct_root_logins" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_no_uid_except_zero" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_password_storage" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_netrc_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_legacy_plus_entries_etc_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_empty_passwords" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_gid_passwd_group_same" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_rounds_system_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_rounds_password_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_all_shadowed_sha512" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_all_shadowed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_password_expiration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_warn_age_login_defs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_set_min_life_existing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_set_max_life_existing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_minlen_login_defs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_minimum_age_login_defs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_maximum_age_login_defs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_account_expiration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_account_use_centralized_automated_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_account_unique_name" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_account_temp_expire_date" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_account_emergency_expire_date" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_account_disable_post_pw_expiration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_group_unique_name" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_authorized_local_users" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_account_unique_id" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_accounts-banners" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_gui_login_banner" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_login_banner_text" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dconf_gnome_banner_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_etc_motd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_etc_issue" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_etc_motd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_etc_issue" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_etc_motd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_etc_issue" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_banner_etc_motd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_banner_etc_issue" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_accounts-session" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_user_umask" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_umask_interactive_users" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_umask_etc_profile" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_umask_etc_login_defs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_umask_etc_csh_cshrc" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_umask_etc_bashrc" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_root_paths" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_root_path_no_dot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_root_path_dirs_no_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_home_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_home_directories" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permission_user_init_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_ownership_home_directories" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupownership_home_directories" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_users_home_files_permissions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_users_home_files_ownership" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_users_home_files_groupownership" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_user_interactive_home_directory_exists" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_user_interactive_home_directory_defined" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_user_home_paths_only" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_user_dot_user_ownership" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_user_dot_no_world_writable_programs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_user_dot_group_ownership" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_tmout" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_polyinstantiated_var_tmp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_polyinstantiated_tmp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_max_concurrent_login_sessions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_logon_fail_delay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_have_homedir_login_defs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_accounts-physical" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_screen_locking" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_smart_card_login" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_smartcard_configure_cert_checking" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_force_opensc_card_drivers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_opensc_card_drivers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_pcscd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_smartcard_packages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_opensc_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_pcsc-lite_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_console_screen_locking" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_tmux_in_shells" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_tmux_lock_command" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_tmux_lock_after_time" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_bashrc_exec_tmux" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_tmux_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_require_singleuser_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_require_emergency_target_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_disable_interactive_boot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_disable_ctrlaltdel_reboot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_disable_ctrlaltdel_burstaction" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_debug-shell_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_accounts-pam" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_set_password_hashing_algorithm" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_systemauth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_passwordauth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_logindefs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_password_hashing_algorithm_libuserconf" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_password_quality" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_password_quality_pwquality" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_ucredit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_retry" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_ocredit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_minlen" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_minclass" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_maxrepeat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_maxclassrepeat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_lcredit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_enforce_root" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_enforce_local" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_difok" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_dictcheck" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_dcredit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_password_quality_pamcracklib" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_locking_out_password_attempts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_unlock_time" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_interval" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_enforce_local" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_deny_root" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_passwords_pam_faillock_deny" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_unix_remember" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_system_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_accounts_password_pam_pwhistory_remember_password_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_enable_pam_namespace" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_display_login_attempts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_auditing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_policy_rules" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_for_ospp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_perm_change_success" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_perm_change_failed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_owner_change_success" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_owner_change_failed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_ospp_general" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_module_load" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_modify_success" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_modify_failed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_immutable_login_uids" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_delete_success" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_delete_failed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_create_success" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_create_failed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_basic_configuration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_access_success" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_access_failed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_configure_auditd_data_retention" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_write_logs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_overflow_action" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_name_format" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_log_format" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_local_events" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_freq" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_space_left_percentage" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_space_left_action" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_space_left" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_num_logs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_max_log_file_action" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_max_log_file" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_flush" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_admin_space_left_action" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_retention_action_mail_acct" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_disk_full_action" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_data_disk_error_action" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_audispd_syslog_plugin_activated" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_audispd_network_failure_action" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_audispd_encrypt_sent_records" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_audispd_disk_full_action" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_audispd_configure_sufficiently_large_partition" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_auditd_audispd_configure_remote_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_auditd_configure_rules" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_time_rules" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_time_watch_localtime" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_time_stime" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_time_settimeofday" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_time_clock_settime" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_time_adjtimex" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_privileged_commands" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_usernetctl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_usermod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_userhelper" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_unix_update" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_unix_chkpwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_umount" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_sudoedit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_sudo" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_su" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_ssh_keysign" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_ssh_agent" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_pt_chown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_postqueue" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_postdrop" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_pam_timestamp_check" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_newuidmap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_newgrp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_newgidmap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_mount" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_kmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_gpasswd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_crontab" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_chsh" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_chage" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands_at" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_privileged_commands" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_login_events" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_login_events_tallylog" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_login_events_lastlog" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_login_events_faillock" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_login_events" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_kernel_module_loading" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_init" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_finit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading_delete" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_kernel_module_loading" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_file_modification" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_unlinkat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_unlink" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_truncate" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_setxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_renameat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_rename" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_removexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_rule_order" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_o_trunc_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat_o_creat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_openat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_rule_order" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_o_trunc_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_o_creat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_rule_order" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_o_trunc_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at_o_creat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open_by_handle_at" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_open" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lsetxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lremovexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_lchown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_ftruncate" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fsetxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fremovexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchownat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchmodat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_fchmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_creat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_chown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification_chmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_unsuccessful_file_modification" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_unlinkat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_unlink" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_truncate" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_setxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_renameat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_rename" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_removexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_openat_o_trunc_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_openat_o_creat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_openat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_open_o_trunc_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_open_o_creat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_open_by_handle_at_o_trunc_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_open_by_handle_at_o_creat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_open_by_handle_at" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_open" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_lsetxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_lremovexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_lchown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_ftruncate" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_fsetxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_fremovexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_fchownat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_fchown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_fchmodat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_fchmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_creat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_chown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_successful_file_modification_chmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_file_deletion_events" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_unlinkat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_unlink" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_rmdir" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_renameat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events_rename" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_file_deletion_events" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_execution_selinux_commands" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_execution_seunshare" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_execution_setsebool" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_execution_setfiles" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_execution_semanage" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_execution_restorecon" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_execution_chcon" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_execution_acl_commands" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_execution_setfacl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_execution_chacl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_audit_dac_actions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_umount2" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_umount" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_setxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_removexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lsetxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lremovexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_lchown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fsetxattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fremovexattr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchownat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchmodat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_fchmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_chown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_dac_modification_chmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_ownership_var_log_audit_stig" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_ownership_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_group_ownership_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_directory_permissions_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_directory_ownership_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_directory_group_ownership_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_directory_access_var_log_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_opasswd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_gshadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_usergroup_modification" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_system_shutdown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_sysadmin_actions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_suid_privilege_function" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_sudoers_d" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_sudoers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_session_events" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_networkconfig_modification" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_media_export" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_mac_modification" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_immutable" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_shadow_openat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_shadow_open_by_handle_at" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_shadow_open" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_passwd_openat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_passwd_open_by_handle_at" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_passwd_open" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_gshadow_openat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_gshadow_open_by_handle_at" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_gshadow_open" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_group_openat" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_group_open_by_handle_at" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_audit_rules_etc_group_open" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_audit_backlog_limit_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_audit_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_auditd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_audit_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_audit-audispd-plugins_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_audispd-plugins_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_bootloader-grub2" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_uefi" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_uefi_no_removeable_media" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_uefi_password" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_uefi_admin_username" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_efi_grub2_cfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_efi_grub2_cfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_efi_grub2_cfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_non-uefi" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_password" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_no_removeable_media" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_admin_username" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_grub2_cfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_grub2_cfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_grub2_cfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_vsyscall_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_pti_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_kernel_trust_cpu_rng" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_enable_iommu_force" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_logging" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_rsyslog_sending_messages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_remote_tls_cacert" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_remote_tls" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_remote_loghost" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_rsyslog_accepting_remote_messages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_nolisten" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_accept_remote_messages_udp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_accept_remote_messages_tcp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_syslogng_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_syslogng_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_log_rotation" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ensure_logrotate_activated" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ensure_rsyslog_log_file_configuration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_remote_access_monitoring" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_files_permissions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_files_ownership" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_files_groupownership" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_encrypt_offload_defaultnetstreamdriver" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_encrypt_offload_actionsendstreamdrivermode" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_encrypt_offload_actionsendstreamdriverauthmode" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_rsyslog_cron_logging" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_configure_logwatch_on_logserver" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_logwatch_configured_splithosts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_logwatch_configured_hostlimit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_disable_logwatch_for_logserver" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rsyslog_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_rsyslog_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_rsyslog-gnutls_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network_ssl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network_disable_unused_interfaces" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-wireless" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_wireless_software" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_wireless_disable_interfaces" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_wireless_disable_in_bios" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_bluetooth_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_bluetooth_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-uncommon" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_tipc_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_sctp_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_rds_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_firewire-core_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_dccp_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_can_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_atm_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-susefirewall2" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-kernel" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network_host_parameters" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_ip_forward" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_send_redirects" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_send_redirects" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network_host_and_router_parameters" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_tcp_syncookies" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_tcp_rfc1337" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_tcp_invalid_ratelimit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_ip_local_port_range" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_icmp_ignore_bogus_error_responses" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_icmp_echo_ignore_broadcasts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_secure_redirects" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_rp_filter" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_log_martians" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_accept_source_route" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_default_accept_redirects" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_secure_redirects" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_rp_filter" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_log_martians" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_accept_source_route" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv4_conf_all_accept_redirects" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-ipv6" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_configuring_ipv6" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network_ipv6_limit_requests" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_router_solicitations" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_max_addresses" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_autoconf" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_source_route" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_redirects" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_ra_rtr_pref" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_ra_pinfo" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_ra_defrtr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_default_accept_ra" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_router_solicitations" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_max_addresses" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_forwarding" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_autoconf" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_source_route" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_redirects" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_ra_rtr_pref" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_ra_pinfo" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_ra_defrtr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_accept_ra" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_ipv6_static_address" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_ipv6_privacy_extensions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_ipv6_default_gateway" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_ipv6" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_ipv6_conf_all_disable_ipv6" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_ipv6_disable_rpc" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_ipv6_disable_interfaces" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_ipv6_option_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_ipv6_disable_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-iptables" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_iptables_ruleset_modifications" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_iptables_log_and_drop_suspicious" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_iptables_icmp_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_iptables_default_rule_forward" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_iptables_default_rule" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_iptables_activation" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_ip6tables_default_rule" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_iptables_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_ip6tables_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_iptables_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-ipsec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_libreswan_approved_tunnels" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_libreswan_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_network-firewalld" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ruleset_modifications" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_set_firewalld_default_zone" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_firewalld_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_firewalld_activation" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_firewalld_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_firewalld_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_sniffer_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_nmcli_permissions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_disable_zeroconf" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_disable_ddns_interfaces" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_network_configure_name_resolution" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_permissions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_restrictions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_poisoning" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_slub_debug_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_page_poison_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_enable_nx" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_install_PAE_kernel_on_x86-32" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_bios_enable_execution_restrictions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_enable_execshield_settings" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_randomize_va_space" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_kptr_restrict" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_exec_shield" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_daemon_umask" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_umask_for_daemons" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_coredumps" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_fs_suid_dumpable" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_disable_users_coredumps" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_coredump_disable_storage" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_coredump_disable_backtraces" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_systemd-coredump_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_vm_mmap_min_addr" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_user_max_user_namespaces" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_net_core_bpf_jit_harden" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_yama_ptrace_scope" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_unprivileged_bpf_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_sysrq" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_pid_max" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_perf_event_paranoid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_perf_event_max_sample_rate" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_perf_cpu_time_max_percent" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_modules_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_kexec_load_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_dmesg_restrict" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_kernel_core_pattern" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_permissions_local" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_partitions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_tmp_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_tmp_noexec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_tmp_nodev" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_tmp_bind" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_noexec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_nodev" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_log_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_log_noexec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_log_nodev" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_log_audit_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_log_audit_noexec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_var_log_audit_nodev" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_tmp_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_tmp_noexec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_tmp_nodev" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_srv_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_opt_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_nosuid_removable_partitions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_noexec_removable_partitions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_nodev_removable_partitions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_nodev_nonroot_local_partitions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_home_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_home_noexec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_home_nodev" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_dev_shm_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_dev_shm_noexec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_dev_shm_nodev" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_boot_nosuid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_boot_noexec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_boot_nodev" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_boot_noauto" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mounting" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_vfat_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_usb-storage_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_udf_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_squashfs_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_jffs2_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_hfsplus_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_hfs_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_freevxfs_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kernel_module_cramfs_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_nousb_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_bios_disable_usb_boot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_bios_assign_password" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_autofs_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_permissions_within_important_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_root_permissions_syslibrary_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_library_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_binary_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_ownership_library_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_ownership_binary_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupownership_system_commands_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_permissions_library_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_ownership_library_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_group_ownership_library_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_permissions_var_log_dir" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_var_log_messages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_var_log" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_var_log_messages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_var_log" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_var_log_messages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_var_log" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_permissions_important_account_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_etc_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_etc_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_etc_gshadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_etc_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_backup_etc_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_backup_etc_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_backup_etc_gshadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_backup_etc_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_etc_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_etc_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_etc_gshadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_etc_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_backup_etc_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_backup_etc_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_backup_etc_gshadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_backup_etc_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_etc_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_etc_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_etc_gshadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_etc_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_passwd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_gshadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_backup_etc_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_fs_protected_symlinks" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysctl_fs_protected_hardlinks" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_files_unowned_by_user" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_ungroupowned" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_unauthorized_world_writable" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_unauthorized_suid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_unauthorized_sgid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_systemmap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_etc_audit_rulesd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_etc_audit_auditd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_perms_world_writable_system_owned_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_perms_world_writable_system_owned" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_perms_world_writable_sticky_bits" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_perms_world_writable_root_owned" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_selinux" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_selinux-booleans" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_zoneminder_run_sudo" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_zoneminder_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_zebra_write_config" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_zarafa_setrlimit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_zabbix_can_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xserver_object_manager" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xserver_execmem" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xserver_clients_write_xshm" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xguest_use_bluetooth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xguest_mount_media" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xguest_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xguest_connect_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xend_run_qemu" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xend_run_blktap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xen_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xdm_write_home" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xdm_sysadm_login" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xdm_exec_bootloader" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_xdm_bind_vnc_tcp_port" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_wine_mmap_zero_ignore" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_webadm_read_user_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_webadm_manage_user_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_xserver" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_usb" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_sanlock" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_samba" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_rawip" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_fusefs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_execmem" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_use_comm" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_transition_userdomain" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_sandbox_use_sys_admin" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_sandbox_use_netlink" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_sandbox_use_mknod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_sandbox_use_audit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_sandbox_use_all_caps" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_rw_qemu_ga_data" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_virt_read_qemu_ga_data" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_varnishd_connect_any" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_user_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_use_samba_home_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_use_nfs_home_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_use_lpd_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_use_fusefs_home_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_use_ecryptfs_home_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_unprivuser_use_svirt" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_unconfined_mozilla_plugin_transition" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_unconfined_login" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_unconfined_chrome_sandbox_transition" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_tor_can_network_relay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_tor_bind_all_unreserved_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_tmpreaper_use_samba" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_tmpreaper_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_tftp_home_dir" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_tftp_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_telepathy_tcp_connect_generic_network_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_telepathy_connect_all_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_sysadm_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_swift_can_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_staff_use_svirt" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_staff_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ssh_sysadm_login" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ssh_keysign" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ssh_chroot_rw_homedirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_squid_use_tproxy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_squid_connect_any" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_spamd_enable_home_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_spamassassin_can_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_smbd_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_smartmon_3ware" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_sge_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_sge_domain_can_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_use_ssh_chroot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_udp_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_tcp_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_share_music" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_rw_noexattrfile" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_postgresql_connect_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_ping" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_mysql_connect_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_execstack" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_execmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_execheap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_selinuxuser_direct_dri_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_secure_mode_policyload" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_secure_mode_insmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_secure_mode" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_secadm_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_saslauthd_read_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_sanlock_use_samba" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_sanlock_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_sanlock_use_fusefs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_share_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_share_fusefs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_run_unconfined" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_portmapper" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_load_libgfapi" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_export_all_rw" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_export_all_ro" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_enable_home_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_domain_controller" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_samba_create_home_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_rsync_full_access" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_rsync_export_all_ro" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_rsync_client" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_rsync_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_racoon_read_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_puppetmaster_use_db" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_puppetagent_manage_all_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_prosody_bind_http_port" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_privoxy_connect_any" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_pppd_for_user" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_pppd_can_insmod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_postgresql_selinux_users_ddl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_postgresql_selinux_unconfined_dbadm" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_postgresql_selinux_transmit_client_label" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_postgresql_can_rsync" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_postfix_local_write_mail_spool" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_polyinstantiation_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_polipo_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_polipo_use_cifs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_polipo_session_users" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_polipo_session_bind_all_unreserved_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_polipo_connect_all_unreserved" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_piranha_lvs_can_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_pcp_read_generic_logs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_pcp_bind_all_unreserved_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_openvpn_run_unconfined" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_openvpn_enable_homedirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_openvpn_can_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_openshift_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_nscd_use_shm" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_nis_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_nfsd_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_nfs_export_all_rw" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_nfs_export_all_ro" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_neutron_can_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_named_write_master_zones" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_named_tcp_bind_http_port" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_nagios_run_sudo" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_nagios_run_pnp4nagios" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mysql_connect_any" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mplayer_execstack" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mpd_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mpd_use_cifs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mpd_enable_homedirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mozilla_read_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mozilla_plugin_use_spice" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mozilla_plugin_use_gps" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mozilla_plugin_use_bluejeans" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mozilla_plugin_can_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mozilla_plugin_bind_unreserved_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mount_anyfile" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mock_enable_homedirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mmap_low_allowed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_minidlna_read_generic_user_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mcelog_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mcelog_foreground" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mcelog_exec_scripts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mcelog_client" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_mailman_use_fusefs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_lsmd_plugin_connect_any" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_logwatch_can_network_connect_mail" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_logrotate_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_login_console_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_logging_syslogd_use_tty" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_logging_syslogd_run_nagios_plugins" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_logging_syslogd_can_sendmail" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_logadm_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ksmtuned_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ksmtuned_use_cifs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_kerberos_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_kdumpgui_run_bootloader" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_irssi_use_full_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_irc_use_any_tcp_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_icecast_use_any_tcp_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_verify_dns" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_use_sasl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_use_openstack" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_use_gpg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_use_fusefs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_use_cifs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_unified" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_tty_comm" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_tmp_exec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_sys_script_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_ssi_exec" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_setrlimit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_serve_cobbler_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_run_stickshift" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_run_preupgrade" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_run_ipa" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_read_user_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_mod_auth_pam" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_mod_auth_ntlm_winbind" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_manage_ipa" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_graceful_shutdown" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_execmem" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_enable_homedirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_enable_ftp_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_enable_cgi" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_dontaudit_search_dirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_dbus_sssd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_dbus_avahi" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_sendmail" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_network_relay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_network_memcache" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_network_connect_db" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_network_connect_cobbler" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_connect_zabbix" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_connect_mythtv" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_connect_ldap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_connect_ftp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_can_check_spam" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_builtin_scripting" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_httpd_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_haproxy_connect_any" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_guest_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_gssd_read_tmp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_gpg_web_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_gluster_export_all_rw" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_gluster_export_all_ro" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_gluster_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_global_ssp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_glance_use_fusefs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_glance_use_execmem" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_glance_api_can_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_gitosis_can_sendmail" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_git_system_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_git_system_use_cifs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_git_system_enable_homedirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_git_session_users" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_git_session_bind_all_unreserved_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_git_cgi_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_git_cgi_use_cifs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_git_cgi_enable_homedirs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ftpd_use_passive_mode" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ftpd_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ftpd_use_fusefs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ftpd_use_cifs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ftpd_full_access" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ftpd_connect_db" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ftpd_connect_all_unreserved" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_ftpd_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_fips_mode" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_fenced_can_ssh" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_fenced_can_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_fcron_crond" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_exim_read_user_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_exim_manage_user_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_exim_can_connect_db" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_entropyd_use_audio" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_domain_kernel_load_modules" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_domain_fd_use" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_dhcpd_use_ldap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_dhcpc_exec_iptables" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_deny_ptrace" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_deny_execmem" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_dbadm_read_user_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_dbadm_manage_user_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_dbadm_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_daemons_use_tty" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_daemons_use_tcp_wrapper" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_daemons_enable_cluster_mode" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_daemons_dump_core" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cvs_read_shadow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cups_execmem" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cron_userdomain_transition" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cron_system_cronjob_use_shares" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cron_can_relabel" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_container_connect_any" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_conman_can_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_condor_tcp_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_collectd_tcp_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cobbler_use_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cobbler_use_cifs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cobbler_can_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cobbler_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cluster_use_execmem" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cluster_manage_all_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cluster_can_network_connect" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_cdrecord_read_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_boinc_execmem" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_awstats_purge_apache_log_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_authlogin_yubikey" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_authlogin_radius" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_authlogin_nsswitch_use_ldap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_auditadm_exec_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_antivirus_use_jit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_antivirus_can_scan_system" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_abrt_upload_watch_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_abrt_handle_event" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sebool_abrt_anon_write" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_selinux_user_login_roles" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_selinux_state" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_selinux_policytype" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_selinux_confinement_of_daemons" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_selinux_all_devicefiles_labeled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_grub2_enable_selinux" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_coreos_enable_selinux_kernel_argument" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_setroubleshoot-plugins_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_setroubleshoot_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_mcstrans_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_setroubleshoot-server_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_policycoreutils-python-utils_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_policycoreutils_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_libselinux_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_services" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_xwindows" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_xwindows" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_xwindows_runlevel_target" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_xwindows_remove_packages" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_xorg-x11-server-common_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_usbguard" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_usbguard_generate_policy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_usbguard_allow_hub" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_usbguard_allow_hid_and_hub" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_usbguard_allow_hid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_configure_usbguard_auditbackend" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_usbguard_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_usbguard_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_sssd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_sssd-ldap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_ldap_start_tls" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_ldap_configure_tls_reqcert" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_ldap_configure_tls_ca_dir" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_ldap_configure_tls_ca" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_ssh_known_hosts_timeout" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_run_as_sssd_user" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_offline_cred_expiration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_memcache_timeout" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_enable_smartcards" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_enable_pam_services" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sssd_enable_certmap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_sssd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_sssd_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_sssd-ipa_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ssh" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ssh_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_sshd_strengthen_firewall" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_x11_use_localhost" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_use_strong_rng" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_use_priv_separation" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_use_approved_macs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_use_approved_ciphers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_maxstartups" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_max_sessions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_max_auth_tries" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_loglevel_verbose" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_loglevel_info" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_login_grace_time" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_keepalive_0" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_keepalive" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_set_idle_timeout" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_rekey_limit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_print_last_log" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_limit_user_access" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_enable_x11_forwarding" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_enable_warning_banner" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_enable_strictmodes" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_enable_pam" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_enable_gssapi_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_do_not_permit_user_env" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_x11_forwarding" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_user_known_hosts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_tcp_forwarding" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_root_password_login" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_root_login" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_rhosts_rsa" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_rhosts" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_pubkey_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_kerb_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_gssapi_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_empty_passwords" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_disable_compression" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sshd_allow_only_protocol2" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_firewalld_sshd_port_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_disable_host_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ssh_client" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ssh_client_use_strong_rng_sh" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ssh_client_use_strong_rng_csh" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ssh_client_rekey_limit" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_iptables_sshd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_firewalld_sshd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_sshd_pub_key" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_sshd_private_key" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_sshd_config" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_sshd_config" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_sshd_config" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_sshd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_sshd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_openssh-server_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_openssh-clients_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_openssh-server_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_snmp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_snmp_configure_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_snmpd_use_newer_protocol" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_snmpd_not_default_password" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_snmpd_no_rwusers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_snmp_service" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_snmpd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_net-snmp_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_smb" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_samba" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_smb_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_samba_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_configuring_samba" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_smb_restrict_file_sharing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_smb_disable_printing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_smb_server_disable_root" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_require_smb_client_signing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_smb_client_signing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_samba-common_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_routing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_quagga" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_zebra_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_quagga_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_rng" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rngd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_radius" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_freeradius_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_proxy" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_squid" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_squid_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_squid_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_printing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_configure_printing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_cups_disable_printserver" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_cups_disable_browsing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_cups_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_obsolete" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_tftp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_tftpd_uses_secure_mode" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_tftp_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_tftp-server_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_tftp_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_telnet" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_telnet_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_telnet-server_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_telnet_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_talk" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_talk-server_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_talk_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_r_services" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_user_host_based_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_rsh_trust_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_host_based_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rsh_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rexec_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rlogin_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_rsh-server_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_rsh_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_nis" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_ypbind_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_ypserv_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_ypbind_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_inetd_and_xinetd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_xinetd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_xinetd_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rsyncd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ntp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ntpd_specify_remote_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ntpd_specify_multiple_servers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_chronyd_specify_remote_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_chronyd_run_as_chrony_user" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_chronyd_or_ntpd_specify_remote_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_chronyd_or_ntpd_specify_multiple_servers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_chronyd_or_ntpd_set_maxpoll" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_chronyd_no_chronyc_network" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_chronyd_client_only" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_ntp_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_ntpd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_chronyd_or_ntpd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_chronyd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_chrony_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_ntp_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_nfs_and_rpc" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_nfs_configuring_servers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_use_acl_enforce_auth_restrictions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_export_filesystems_read_only" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_configure_exports_restrictively" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_use_root_squashing_all_exports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_use_kerberos_security_all_exports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_restrict_nfs_clients_to_privileged_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_insecure_locks_exports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_no_all_squash_exports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_nfs_configuring_clients" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mounting_remote_filesystems" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_nosuid_remote_filesystems" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_noexec_remote_filesystems" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_nodev_remote_filesystems" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_mount_option_krb_sec_remote_filesystems" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_nfsd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_nfs_no_anonymous" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rpcsvcgssd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_nfs_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_nfs_configuring_all_machines" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_nfs_configure_fixed_ports" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_nfs_fixed_statd_port" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_nfs_fixed_mountd_port" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_nfs_fixed_lockd_udp_port" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_nfs_fixed_lockd_tcp_port" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_nfs_client_or_server_not_both" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_nfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_nfs_services" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rpcbind_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rpcgssd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rpcidmapd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_nfslock_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_netfs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_netfs_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_nfs-utils_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_mail" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_harden_os" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_cfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_relay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_relay_smtp_auth_for_untrusted" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_relay_set_trusted" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_relay_require_tls" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_mail_smtpd_relay_restrictions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_mail_smtpd_recipient_restrictions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_postfix_prevent_unrestricted_relay" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_server_dos" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_postfix_server_banner" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_configure_ssl_certs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_install_ssl_cert" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_postfix_client" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_postfix_network_listening_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_postfix_client_configure_relayhost" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_postfix_client_configure_mail_alias" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_postfix_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_sendmail_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ldap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_openldap_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ldap_server_config_certificate_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_openldap-servers_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_openldap_client" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ldap_client_tls_cacertpath" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ldap_client_start_tls" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_enable_ldap_client" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_openldap-clients_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_kerberos" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_kerberos_disable_no_keytab" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_krb5-server_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_imap" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_dovecot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_dovecot_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_dovecot_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_configure_dovecot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dovecot_support_necessary_protocols" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dovecot_enabling_ssl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dovecot_enable_ssl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dovecot_disable_plaintext_auth" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dovecot_configure_ssl_key" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dovecot_configure_ssl_cert" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dovecot_allow_imap_access" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_http" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_securing_httpd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_use_dos_protection_modules" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_secure_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_partition_for_web_content" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_remove_robots_file" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_limit_java_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_encrypt_file_uploads" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_disable_content_symlinks" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_documentroot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_banner_page" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_restrict_info_leakage" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_servertokens_prod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_serversignature_off" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_modules_improve_security" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_deploy_mod_ssl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_require_client_certs" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_install_mod_ssl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_valid_server_cert" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_tls" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_deploy_mod_security" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_install_mod_security" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_minimize_loadable_modules" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_core_modules" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_optional_components" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_minimize_config_files_included" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_basic_authentication" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_webdav" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_url_correction" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_server_side_includes" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_server_configuration_display" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_server_activity_status" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_proxy_support" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_mod_rewrite" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_mime_magic" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_ldap_support" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_enable_log_config" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_digest_authentication" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_cgi_support" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_cache_support" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_directory_restrictions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_restrict_web_directory" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_restrict_root_directory" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_restrict_critical_directories" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_limit_available_methods" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_ignore_htaccess_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_disable_anonymous_ftp_access" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_script_permissions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_anonymous_content_sharing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_configure_php_securely" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_configure_perl_securely" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_perl_taint" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_configure_os_protect_web_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_restrict_file_dir_access" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_http_configure_log_file_ownership" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_httpd_server_modules_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_httpd_server_conf_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_httpd_server_conf_d_files" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_perms_var_log_httpd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dir_perms_etc_httpd_conf" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_chroot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_remote_session_encryption" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_firewall" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_antivirus_scan_uploads" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_remove_backups" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_public_resources_not_shared" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_private_server_on_separate_subnet" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_no_compilers_in_prod" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_nipr_accredited_dmz" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_entrust_passwords" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_enable_system_logging" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_enable_loglevel" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_enable_error_logging" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_disable_mime_types" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_max_keepalive_requests" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_httpd_configure_log_format" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_installing_httpd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_httpd_minimal_modules_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_httpd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_httpd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_httpd_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ftp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ftp_use_vsftpd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_vsftpd_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ftp_configure_vsftpd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_ftp_restrict_users" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ftp_restrict_to_anon" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ftp_limit_users" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ftp_present_banner" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ftp_log_transactions" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ftp_home_partition" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ftp_disable_uploads" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_ftp_configure_firewall" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_vsftpd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_vsftpd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_vsftpd_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_fapolicyd" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_fapolicyd_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_fapolicyd_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_docker" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dns" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dns_server_protection" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dns_server_separate_internal_external" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dns_server_partition_with_views" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dns_server_disable_zone_transfers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dns_server_disable_dynamic_updates" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dns_server_authenticate_zone_transfers" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dns_server_isolation" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dns_server_dedicated" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dns_server_chroot" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_dns_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_named_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_bind_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dhcp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_dhcp_server" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_dhcpd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_dhcp_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disabling_dhcp_client" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_sysconfig_networking_bootproto_ifcfg" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dhcp_server_configuration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dhcp_server_minimize_served_info" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dhcp_server_disable_ddns" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dhcp_server_deny_decline" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dhcp_server_deny_bootp" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dhcp_server_configure_logging" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_dhcp_client_configuration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_dhcp_client_restrict_options" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_deprecated" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_inetutils-telnetd_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_telnetd-ssl_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_ntpdate_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_telnetd_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_nis_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_cron_and_at" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_restrict_at_cron_users" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_cron_allow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_cron_allow" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_crontab" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_cron_weekly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_cron_monthly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_cron_hourly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_cron_daily" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_permissions_cron_d" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_crontab" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_cron_weekly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_cron_monthly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_cron_hourly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_cron_daily" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_owner_cron_d" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_crontab" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_cron_weekly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_cron_monthly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_cron_hourly" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_cron_daily" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_file_groupowner_cron_d" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_disable_anacron" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_atd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_cron_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_crond_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_cron_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_base" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_mdmonitor_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rdisc_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_ntpdate_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rhnsd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_abrtd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_kdump_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_portreserve_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_rhsmcertd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_acpid_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_netconsole_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_certmonger_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_quota_nld_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_saslauthd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_sysstat_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_oddjobd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_qpidd_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_cpupower_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_cockpit_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_psacct_enabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_abrt_removed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_package_psacct_installed" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_avahi" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_disable_avahi_group" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_service_avahi-daemon_disabled" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_avahi_configuration" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_avahi_restrict_published_information" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_avahi_prevent_port_sharing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_avahi_ip_only" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_avahi_disable_publishing" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_rule_avahi_check_ttl" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_apt" selected="false"/>
+    <xccdf:select idref="xccdf_org.ssgproject.content_group_apport" selected="false"/>
+  </xccdf:Profile>
+</xccdf:Tailoring>
diff --git a/satellite/host_vars/satellite.example.com/activation_keys.yml b/satellite/host_vars/satellite.example.com/activation_keys.yml
new file mode 100644
index 0000000..0710e0d
--- /dev/null
+++ b/satellite/host_vars/satellite.example.com/activation_keys.yml
@@ -0,0 +1,22 @@
+---
+satellite_activation_keys:
+  # Red Hat Enterprise Linux 7
+  - name: "RHEL7_Dev"
+    lifecycle_environment: "RHEL7_Dev"
+    content_view: "RHEL7"
+  - name: "RHEL7_QA"
+    lifecycle_environment: "RHEL7_QA"
+    content_view: "RHEL7"
+  - name: "RHEL7_Prod"
+    lifecycle_environment: "RHEL7_Prod"
+    content_view: "RHEL7"
+  # Red Hat Enterprise Linux 8
+  - name: "RHEL8_Dev"
+    lifecycle_environment: "RHEL8_Dev"
+    content_view: "RHEL8"
+  - name: "RHEL8_QA"
+    lifecycle_environment: "RHEL8_QA"
+    content_view: "RHEL8"
+  - name: "RHEL8_Prod"
+    lifecycle_environment: "RHEL8_Prod"
+    content_view: "RHEL8"
diff --git a/satellite/host_vars/satellite.example.com/content_views.yml b/satellite/host_vars/satellite.example.com/content_views.yml
new file mode 100644
index 0000000..6e6a7e0
--- /dev/null
+++ b/satellite/host_vars/satellite.example.com/content_views.yml
@@ -0,0 +1,29 @@
+---
+satellite_content_views:
+  # Red Hat Enterprise Linux 7
+  - name: RHEL7
+    content_view: RHEL7
+    repositories:
+    - name: Red Hat Enterprise Linux 7 Server (RPMs)
+      basearch: x86_64
+      releasever: 7Server
+      product: 'Red Hat Enterprise Linux Server'
+    - name: Red Hat Enterprise Linux 7 Server - Extras (RPMs)
+      basearch: x86_64
+      product: 'Red Hat Enterprise Linux Server'
+    - name: Red Hat Satellite Tools 6.8 (for RHEL 7 Server) (RPMs)
+      basearch: x86_64
+      product: 'Red Hat Enterprise Linux Server'
+  # Red Hat Enterprise Linux 8
+  - name: RHEL8
+    content_view: RHEL8
+    content_view_update: true
+    repositories:
+    - name: Red Hat Enterprise Linux 8 for x86_64 - BaseOS (RPMs)
+      releasever: 8
+      product: Red Hat Enterprise Linux for x86_64
+    - name: Red Hat Enterprise Linux 8 for x86_64 - AppStream (RPMs)
+      releasever: 8
+      product: Red Hat Enterprise Linux for x86_64
+    - name: Red Hat Satellite Tools 6.8 for RHEL 8 x86_64 (RPMs)
+      product: Red Hat Enterprise Linux for x86_64
diff --git a/satellite/host_vars/satellite.example.com/defaults.yml b/satellite/host_vars/satellite.example.com/defaults.yml
new file mode 100644
index 0000000..5997d72
--- /dev/null
+++ b/satellite/host_vars/satellite.example.com/defaults.yml
@@ -0,0 +1,3 @@
+---
+satellite_organization: "Default Organization"
+satellite_validate_certs: false
diff --git a/satellite/host_vars/satellite.example.com/lifecycle_environments.yml b/satellite/host_vars/satellite.example.com/lifecycle_environments.yml
new file mode 100644
index 0000000..72792a6
--- /dev/null
+++ b/satellite/host_vars/satellite.example.com/lifecycle_environments.yml
@@ -0,0 +1,16 @@
+---
+satellite_lifecycle_environments:
+  # Red Hat Enterprise Linux 7
+  - name: "RHEL7_Dev"
+    prior: "Library"
+  - name: "RHEL7_QA"
+    prior: "RHEL7_Dev"
+  - name: "RHEL7_Prod"
+    prior: "RHEL7_QA"
+  # Red Hat Enterprise Linux 8
+  - name: "RHEL8_Dev"
+    prior: "Library"
+  - name: "RHEL8_QA"
+    prior: "RHEL8_Dev"
+  - name: "RHEL8_Prod"
+    prior: "RHEL8_QA"
diff --git a/satellite/satellite_promote.yml b/satellite/satellite_promote.yml
new file mode 100644
index 0000000..3b39ace
--- /dev/null
+++ b/satellite/satellite_promote.yml
@@ -0,0 +1,17 @@
+---
+- hosts: localhost
+  connection: local
+  gather_facts: no
+  vars:
+    organization: Default Organization
+    lifecycle_environment: undef
+    current_lifecycle_environment: undef
+    content_view: undef
+
+  tasks:
+  - name: Promote Content View
+    redhat.satellite.content_view_version:
+      content_view: "{{ content_view }}"
+      organization: "{{ organization }}"
+      lifecycle_environments: "{{ lifecycle_environment }}"
+      current_lifecycle_environment: "{{ current_lifecycle_environment }}"
diff --git a/satellite/satellite_publish.yml b/satellite/satellite_publish.yml
new file mode 100644
index 0000000..33c2567
--- /dev/null
+++ b/satellite/satellite_publish.yml
@@ -0,0 +1,29 @@
+---
+- hosts: localhost
+  connection: local
+  gather_facts: no
+  vars:
+    content_view: undef
+    env: undef
+    organization: Default Organization
+    lifecycle_environment: "{{ content_view }}_{{ env }}"
+    publish_timeout: 14400
+    publish_retry_interval: 15
+
+  tasks:
+  - name: publish content view
+    redhat.satellite.content_view_version:
+      content_view: "{{ content_view }}"
+      organization: "{{ organization }}"
+      lifecycle_environments: "{{ lifecycle_environment }}"
+#    async: "{{ publish_timeout }}"
+#    poll: 0
+#    register: publish_async
+
+#  - name: check if content view is finished
+#    async_status:
+#      jid: "{{ publish_async.ansible_job_id }}"
+#    register: job_result
+#    until: job_result.finished
+#    retries: "{{ ( publish_timeout / publish_retry_interval ) | int }}"
+#   delay: "{{ publish_retry_interval }}"
diff --git a/satellite/server_openscap.yml b/satellite/server_openscap.yml
new file mode 100644
index 0000000..ac5129b
--- /dev/null
+++ b/satellite/server_openscap.yml
@@ -0,0 +1,16 @@
+---
+- hosts: "{{ HOSTS }}"
+  become: yes
+  vars:
+    policy_name: all
+  roles:
+    - demo.satellite.scap_client
+
+  tasks:
+  - name: Randomized startup delay...
+    pause: seconds="{{ 5 | random }}"
+
+  - name: "Run SCAP Scan"
+    shell: "/usr/bin/foreman_scap_client {{ item.id }}"
+    loop: "{{ policy }}"
+    when: policy_scan == 'all' or item.name in policy_scan
diff --git a/satellite/server_register.yml b/satellite/server_register.yml
new file mode 100644
index 0000000..0ee988a
--- /dev/null
+++ b/satellite/server_register.yml
@@ -0,0 +1,8 @@
+---
+- hosts: "{{ HOSTS }}"
+  become: yes
+  vars:
+    # env: undef
+    satellite_url: "{{ lookup('ansible.builtin.env', 'SATELLITE_SERVER') }}"
+  roles:
+    - demo.satellite.register_host
\ No newline at end of file
diff --git a/satellite/setup.yml b/satellite/setup.yml
new file mode 100644
index 0000000..b8fa354
--- /dev/null
+++ b/satellite/setup.yml
@@ -0,0 +1,275 @@
+user_message:
+
+controller_components:
+  - credential_types
+  - credentials
+  - inventory_sources
+  - job_templates
+  - job_launch
+#  - workflow_job_templates
+
+controller_credential_types:
+  - name: Satellite Collection
+    kind: cloud
+    inputs:
+      fields:
+        - id: username
+          type: string
+          label: Satellite Username
+        - id: password
+          type: string
+          label: Satellite Password
+          secret: true
+        - id: host
+          type: string
+          label: Satellite Hostname
+      required:
+        - username
+        - password
+        - host
+    injectors:
+      env:
+        SATELLITE_SERVER: "{% raw %}{  { host  }}{% endraw %}"
+        SATELLITE_USERNAME: "{% raw %}{  { username  }}{% endraw %}"
+        SATELLITE_PASSWORD: "{% raw %}{  { password  }}{% endraw %}"
+        SATELLITE_VALIDATE_CERTS: 'false'
+
+controller_credentials:
+  - name: Satellite Inventory
+    credential_type: Red Hat Satellite 6
+    organization: Default
+    inputs:
+      host: https://satellite.example.com
+      username: admin
+      password: ansible123!
+  - name: Satellite Credential
+    credential_type: Satellite Collection
+    organization: Default
+    inputs:
+      host: https://satellite.example.com
+      username: admin
+      password: ansible123!
+
+controller_inventory_sources:
+- name: Satellite Inventory
+  inventory: Workshop Inventory
+  credential: Satellite Inventory
+  source: satellite6
+  update_on_launch: false
+  execution_environment: Control Plane Execution Environment
+  overwrite: true
+  source_vars:
+    hostnames:
+      - name.split('.')[0]
+    groups:
+      patch_bugs: foreman_content_facet_attributes.errata_counts.bugfix
+      patch_enhancements: foreman_content_facet_attributes.errata_counts.enhancement
+      patch_security: foreman_content_facet_attributes.errata_counts.security
+    keyed_groups:
+      - prefix: env
+        key: foreman_content_facet_attributes.lifecycle_environment_name
+      - prefix: cv
+        key: foreman_content_facet_attributes.content_view_name
+      - prefix: os
+        key: foreman_operatingsystem_name
+      - prefix: scap
+        key: foreman_compliance_status_label
+    validate_certs: no
+
+controller_templates:
+- name: LINUX / Register with Satellite
+  project: Ansible official demo project
+  playbook: satellite/server_register.yml
+  inventory: Workshop Inventory
+  notification_templates_started: Telemetry
+  notification_templates_success: Telemetry
+  notification_templates_error: Telemetry
+  credentials:
+    - Workshop Credential
+    - Satellite Credential
+  extra_vars:
+    org_id: "Default_Organization"
+  survey_enabled: true
+  survey:
+    name: ''
+    description: ''
+    spec:
+      - question_name: Server Name or Pattern
+        type: text
+        variable: HOSTS
+        required: false
+      - question_name: Choose Environment
+        type: multiplechoice
+        variable: env
+        choices:
+          - Dev
+          - QA
+          - Prod
+        required: true
+
+- name: LINUX / Compliance Scan with Satellite
+  project: Ansible official demo project
+  playbook: satellite/server_openscap.yml
+  inventory: Workshop Inventory
+  execution_environment: Ansible Engine 2.9 execution environment
+  notification_templates_started: Telemetry
+  notification_templates_success: Telemetry
+  notification_templates_error: Telemetry
+  credentials:
+    - Satellite Credential
+    - Workshop Credential
+  extra_vars:
+    policy_scan: all
+  survey_enabled: true
+  survey:
+    name: ''
+    description: ''
+    spec:
+      - question_name: Server Name or Pattern
+        type: text
+        variable: HOSTS
+        required: false
+
+- name: SATELLITE / Publish Content View Version
+  project: Ansible official demo project
+  playbook: satellite/satellite_publish.yml
+  inventory: Workshop Inventory
+  notification_templates_started: Telemetry
+  notification_templates_success: Telemetry
+  notification_templates_error: Telemetry
+  credentials:
+    - Satellite Credential
+  extra_vars:
+    env: Dev
+  survey_enabled: true
+  survey:
+    name: ''
+    description: ''
+    spec:
+      - question_name: Select Content View
+        variable: content_view
+        type: multiplechoice
+        choices: "{{ satellite_content_views | selectattr('name', 'match', '^RHEL.*$') | map(attribute='name') | list}}"
+        required: true
+
+- name: SATELLITE / Promote Content View Version
+  project: Ansible official demo project
+  playbook: satellite/satellite_promote.yml
+  inventory: Workshop Inventory
+  notification_templates_started: Telemetry
+  notification_templates_success: Telemetry
+  notification_templates_error: Telemetry
+  credentials:
+    - Satellite Credential
+  survey_enabled: true
+  survey:
+    name: ''
+    description: ''
+    spec:
+      - question_name: Select Content View
+        variable: content_view
+        type: multiplechoice
+        choices: "{{ satellite_content_views | selectattr('name', 'match', '^RHEL.*$') | map(attribute='name') | list}}"
+        required: true
+      - question_name: Current Lifecycle Environment
+        variable: current_lifecycle_environment
+        type: multiplechoice
+        choices: "{{ satellite_lifecycle_environments | selectattr('name', 'match', '^RHEL.*$') | map(attribute='name') | list}}"
+        required: true
+      - question_name: Next Lifecycle Environment
+        variable: lifecycle_environment
+        type: multiplechoice
+        choices: "{{ satellite_lifecycle_environments | selectattr('name', 'match', '^RHEL.*$') | map(attribute='name') | list}}"
+        required: true
+
+- name: SETUP / Satellite
+  project: Ansible official demo project
+  playbook: satellite/setup_satellite.yml
+  inventory: Workshop Inventory
+  notification_templates_started: Telemetry
+  notification_templates_success: Telemetry
+  notification_templates_error: Telemetry
+  credentials:
+    - Satellite Credential
+
+    
+controller_launch_jobs:
+  - name: SETUP
+    wait: false
+    extra_vars:
+      demo: linux
+
+  - name: SETUP / Satellite
+    wait: false
+
+#######################
+### Satellite Vars ###
+######################
+satellite_components: 
+  - content_views
+  #- content_view_publish
+  - lifecycle_environments
+  - activation_keys
+
+satellite_organization: "Default Organization"
+satellite_validate_certs: false
+
+satellite_content_views:
+  # Red Hat Enterprise Linux 7
+  - name: RHEL7
+    content_view: RHEL7
+    repositories:
+    - name: Red Hat Enterprise Linux 7 Server RPMs x86_64 7Server
+      product: 'Red Hat Enterprise Linux Server'
+    - name: Red Hat Enterprise Linux 7 Server - Extras RPMs x86_64
+      product: 'Red Hat Enterprise Linux Server'
+    - name: Red Hat Satellite Client 6 for RHEL 7 Server RPMs x86_64
+      product: 'Red Hat Enterprise Linux Server'
+  # Red Hat Enterprise Linux 8
+  - name: RHEL8
+    content_view: RHEL8
+    repositories:
+    - name: Red Hat Enterprise Linux 8 for x86_64 - BaseOS RPMs 8
+      product: Red Hat Enterprise Linux for x86_64
+    - name: Red Hat Enterprise Linux 8 for x86_64 - AppStream RPMs 8
+      product: Red Hat Enterprise Linux for x86_64
+    - name: Red Hat Satellite Client 6 for RHEL 8 x86_64 RPMs
+      product: Red Hat Enterprise Linux for x86_64
+
+satellite_lifecycle_environments:
+  # Red Hat Enterprise Linux 7
+  - name: "RHEL7_Dev"
+    prior: "Library"
+  - name: "RHEL7_QA"
+    prior: "RHEL7_Dev"
+  - name: "RHEL7_Prod"
+    prior: "RHEL7_QA"
+  # Red Hat Enterprise Linux 8
+  - name: "RHEL8_Dev"
+    prior: "Library"
+  - name: "RHEL8_QA"
+    prior: "RHEL8_Dev"
+  - name: "RHEL8_Prod"
+    prior: "RHEL8_QA"
+
+satellite_activation_keys:
+  # Red Hat Enterprise Linux 7
+  - name: "RHEL7_Dev"
+    lifecycle_environment: "RHEL7_Dev"
+    content_view: "RHEL7"
+  - name: "RHEL7_QA"
+    lifecycle_environment: "RHEL7_QA"
+    content_view: "RHEL7"
+  - name: "RHEL7_Prod"
+    lifecycle_environment: "RHEL7_Prod"
+    content_view: "RHEL7"
+  # Red Hat Enterprise Linux 8
+  - name: "RHEL8_Dev"
+    lifecycle_environment: "RHEL8_Dev"
+    content_view: "RHEL8"
+  - name: "RHEL8_QA"
+    lifecycle_environment: "RHEL8_QA"
+    content_view: "RHEL8"
+  - name: "RHEL8_Prod"
+    lifecycle_environment: "RHEL8_Prod"
+    content_view: "RHEL8"
diff --git a/satellite/setup_satellite.yml b/satellite/setup_satellite.yml
new file mode 100644
index 0000000..c70fa47
--- /dev/null
+++ b/satellite/setup_satellite.yml
@@ -0,0 +1,54 @@
+---
+- hosts: localhost
+  gather_facts: no
+  vars_files: setup.yml
+  vars:
+    refresh_satellite_manifest: true
+
+  tasks:
+  - name: refresh manifest
+    redhat.satellite.subscription_manifest:
+      organization: "Default Organization"
+      state: refreshed
+    when: refresh_satellite_manifest
+
+  - name: Setup CV
+    include_role:
+      name: redhat.satellite.content_views
+
+  - name: Publish CV
+    include_role:
+      name: redhat.satellite.content_view_publish
+    vars:
+      satellite_content_views:
+      - RHEL7
+      - RHEL8
+
+  - name: Setup Lifecycle Environment
+    include_role:
+      name: redhat.satellite.lifecycle_environments
+
+  - name: redhat.satellite.content_view_publish CV
+    redhat.satellite.content_view_version:
+      organization: "{{ satellite_organization }}"
+      content_view: "{{ item }}"
+      lifecycle_environments:
+        - "{{ item }}_Dev"
+        - "{{ item }}_QA"
+        - "{{ item }}_Prod"
+    loop:
+      - RHEL7
+      - RHEL8
+
+  - name: Setup activation_keys
+    include_role:
+      name: redhat.satellite.activation_keys
+
+  - name: Add SCAP Tailoring File
+    redhat.satellite.scap_tailoring_file:
+      name: RHEL7_STIG
+      organizations: "{{ satellite_organization }}"
+      scap_file: "{{ item }}"
+    loop: 
+      - files/ssg-rhel7-ds-tailoring.xml
+      - files/ssg-rhel8-ds-tailoring-stig-gui.xml
diff --git a/setup_demo.yml b/setup_demo.yml
index bc51eba..0850b63 100644
--- a/setup_demo.yml
+++ b/setup_demo.yml
@@ -13,6 +13,12 @@
           - notification_templates
           - job_templates
           - settings
+        controller_execution_environments:
+          - name: product-demos
+            image: http://quay.io/acme_corp/product-demos-ee:latest
+        controller_organizations:
+          - name: Default
+            default_environment: product-demos
         controller_notifications:
           - name: Telemetry
             organization: Default
@@ -22,7 +28,7 @@
               http_method: POST
               headers: {}
         controller_templates:
-          - name: "FEEDBACK"
+          - name: "SUBMIT FEEDBACK"
             job_type: run
             inventory: "Workshop Inventory"
             project: "Ansible official demo project"
diff --git a/windows/create_ad_domain.yml b/windows/create_ad_domain.yml
index 2a085e8..bddbed6 100644
--- a/windows/create_ad_domain.yml
+++ b/windows/create_ad_domain.yml
@@ -4,7 +4,6 @@
   gather_facts: false
 
   tasks:
-
   - name: Set Local Admin Password
     ansible.windows.win_user:
       name: Administrator