Skip to content

pillarsdotnet/ansible-wazuh-agent

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
defaults
defaults
 
 
handlers
handlers
 
 
meta
meta
 
 
tasks
tasks
 
 
vars
vars
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
requirements.yml
requirements.yml
 
 

Repository files navigation

wazuh-agent

This role will install and configure the Wazuh Agent service.

OS Requirements

This role is compatible with:

  • Red Hat
  • CentOS
  • Fedora
  • Debian
  • Ubuntu

Role Requirements

Role Variables

  • wazuh_agent: Wazuh agent local configuration

    • wazuh_agent_activeresponse: Settings for active-response section
    • wazuh_agent_client: Settings for client section
    • wazuh_agent_clientbuffer: Settings for client_buffer section
    • wazuh_agent_labels: Settings for labels section
    • wazuh_agent_localfile: Settings for localfile section
    • wazuh_agent_logformat: Log format setting
    • wazuh_agent_rootcheck: Settings for rootcheck section
    • wazuh_agent_socket: Settings for socket section
    • wazuh_agent_syscheck: Settings for syscheck section

  • wazuh_authd: Settings for Wazuh agent registration

    • wazuh_authd_address: Address of ossec-authd or ossec-api listener
    • wazuh_authd_apienable: Register via RESTful-API
    • wazuh_authd_apihttps: True if Wazuh API is secured by SSL.
    • wazuh_authd_apipass: Password for API authentication
    • wazuh_authd_apiport: API port
    • wazuh_authd_apiuser: Username for API authentication
    • wazuh_authd_enable: Register via authd
    • wazuh_authd_pass: Registration password
    • wazuh_authd_port: Port for ossec-authd listener
    • wazuh_authd_sslauto: Enable SSL auto-negotiation
    • wazuh_authd_sslca: Filename of CA certificate (in /var/ossec/etc) used to verify the server.
    • wazuh_authd_sslcert: Filename of agent certificate (in /var/ossec/etc).

  • wazuh_purge: Completely remove the /var/ossec directory before installation. (defaults to false).

  • wazuh_repo_add: Add the wazuh repo prior to installation.

  • wazuh_repo_remove: Remove the wazuh repo after installation.

Example Playbook

     - hosts: all:!wazuh-manager
       roles:
         - 'ansible-wazuh-agent'
       vars:
         wazuh_agent_client_server_address: 'wazuh-manager.example.com'
         wazuh_agent_client_server_protocol: 'tcp'
         wazuh_authd_enable: true
         wazuh_authd_pass: 'S3CR3T'

License

BSD

Created by Robert Vincent based on previous work by Wazuh, Inc.

About

Install and configure Wazuh agent

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published