Updating manager configuration templates and vars
This commit is contained in:
Zenidd
parent
14307bd22a
commit
0019c7fdf2
@ -111,11 +111,7 @@ wazuh_agent_config:
|
|||||||
- /etc/cups/certs
|
- /etc/cups/certs
|
||||||
- /etc/dumpdates
|
- /etc/dumpdates
|
||||||
- /etc/svc/volatile
|
- /etc/svc/volatile
|
||||||
- /sys/kernel/security
|
|
||||||
- /sys/kernel/debug
|
|
||||||
- /dev/core
|
|
||||||
ignore_linux_type:
|
ignore_linux_type:
|
||||||
- '^/proc'
|
|
||||||
- '.log$|.swp$'
|
- '.log$|.swp$'
|
||||||
ignore_win:
|
ignore_win:
|
||||||
- '.log$|.htm$|.jpg$|.png$|.chm$|.pnf$|.evtx$'
|
- '.log$|.htm$|.jpg$|.png$|.chm$|.pnf$|.evtx$'
|
||||||
|
|||||||
@ -105,7 +105,7 @@ wazuh_manager_config:
|
|||||||
authd:
|
authd:
|
||||||
enable: true
|
enable: true
|
||||||
port: 1515
|
port: 1515
|
||||||
use_source_ip: 'yes'
|
use_source_ip: 'no'
|
||||||
force_insert: 'yes'
|
force_insert: 'yes'
|
||||||
force_time: 0
|
force_time: 0
|
||||||
purge: 'yes'
|
purge: 'yes'
|
||||||
@ -166,24 +166,29 @@ wazuh_manager_config:
|
|||||||
- /etc/cups/certs
|
- /etc/cups/certs
|
||||||
- /etc/dumpdates
|
- /etc/dumpdates
|
||||||
- /etc/svc/volatile
|
- /etc/svc/volatile
|
||||||
- /sys/kernel/security
|
|
||||||
- /sys/kernel/debug
|
|
||||||
- /dev/core
|
|
||||||
ignore_linux_type:
|
ignore_linux_type:
|
||||||
- '^/proc'
|
|
||||||
- '.log$|.swp$'
|
- '.log$|.swp$'
|
||||||
no_diff:
|
no_diff:
|
||||||
- /etc/ssl/private.key
|
- /etc/ssl/private.key
|
||||||
directories:
|
directories:
|
||||||
- dirs: /etc,/usr/bin,/usr/sbin
|
- dirs: /etc,/usr/bin,/usr/sbin
|
||||||
checks: 'check_all="yes"'
|
checks: ''
|
||||||
- dirs: /bin,/sbin,/boot
|
- dirs: /bin,/sbin,/boot
|
||||||
checks: 'check_all="yes"'
|
checks: ''
|
||||||
auto_ignore_frequency:
|
auto_ignore_frequency:
|
||||||
frequency: 'frequency="10"'
|
frequency: 'frequency="10"'
|
||||||
timeframe: 'timeframe="3600"'
|
timeframe: 'timeframe="3600"'
|
||||||
value: 'no'
|
value: 'no'
|
||||||
skip_nfs: 'yes'
|
skip_nfs: 'yes'
|
||||||
|
skip_dev: 'yes'
|
||||||
|
skip_proc: 'yes'
|
||||||
|
skip_sys: 'yes'
|
||||||
|
process_priority: 10
|
||||||
|
max_eps: 100
|
||||||
|
sync_enabled: 'yes'
|
||||||
|
sync_interval: '5m'
|
||||||
|
sync_max_interval: '1h'
|
||||||
|
sync_max_eps: 10
|
||||||
rootcheck:
|
rootcheck:
|
||||||
frequency: 43200
|
frequency: 43200
|
||||||
openscap:
|
openscap:
|
||||||
|
|||||||
@ -332,6 +332,29 @@
|
|||||||
{% if wazuh_manager_config.syscheck.skip_nfs is defined %}
|
{% if wazuh_manager_config.syscheck.skip_nfs is defined %}
|
||||||
<skip_nfs>{{ wazuh_manager_config.syscheck.skip_nfs }}</skip_nfs>
|
<skip_nfs>{{ wazuh_manager_config.syscheck.skip_nfs }}</skip_nfs>
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
{% if wazuh_manager_config.syscheck.skip_dev is defined %}
|
||||||
|
<skip_dev>{{ wazuh_manager_config.syscheck.skip_dev }}</skip_dev>
|
||||||
|
{% endif %}
|
||||||
|
{% if wazuh_manager_config.syscheck.skip_proc is defined %}
|
||||||
|
<skip_proc>{{ wazuh_manager_config.syscheck.skip_proc }}</skip_proc>
|
||||||
|
{% endif %}
|
||||||
|
{% if wazuh_manager_config.syscheck.skip_sys is defined %}
|
||||||
|
<skip_sys>{{ wazuh_manager_config.syscheck.skip_sys }}</skip_sys>
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
|
<!-- Nice value for Syscheck module -->
|
||||||
|
<process_priority>{{ wazuh_agent_config.syscheck.process_priority }}</process_priority>
|
||||||
|
|
||||||
|
<!-- Maximum output throughput -->
|
||||||
|
<max_eps>{{ wazuh_agent_config.syscheck.max_eps }}</max_eps>
|
||||||
|
|
||||||
|
<!-- Database synchronization settings -->
|
||||||
|
<synchronization>
|
||||||
|
<enabled>{{ wazuh_agent_config.syscheck.sync_enabled }}</enabled>
|
||||||
|
<interval>{{ wazuh_agent_config.syscheck.interval }}</interval>
|
||||||
|
<max_interval>{{ wazuh_agent_config.syscheck.max_interval }}</max_interval>
|
||||||
|
<max_eps>{{ wazuh_agent_config.syscheck.max_eps }}</max_eps>
|
||||||
|
</synchronization>
|
||||||
</syscheck>
|
</syscheck>
|
||||||
|
|
||||||
<global>
|
<global>
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user