diff --git a/.github/playbooks/aio-wazuh.yml b/.github/playbooks/aio-wazuh.yml
index 099f5876..d9f7e0d4 100644
--- a/.github/playbooks/aio-wazuh.yml
+++ b/.github/playbooks/aio-wazuh.yml
@@ -3,6 +3,12 @@
become: true
become_user: root
roles:
+ # 1. Check packages
+ - role: ../../roles/wazuh/check-packages
+ become: no
+ delegate_to: localhost
+ run_once: true
+ # 2. Generate certificates
- role: ../../roles/wazuh/wazuh-indexer
vars:
generate_certs: true
@@ -30,24 +36,19 @@
become: true
become_user: root
roles:
- # 1. Check packages
- - role: ../../roles/wazuh/check-packages
- become: no
- delegate_to: localhost
- run_once: true
- # 2. Wazuh indexer
+ # 1. Wazuh indexer
- role: ../../roles/wazuh/wazuh-indexer
vars:
indexer_node_name: "wazuh-es01"
single_node: true
- # 3. Managers
+ # 2. Managers
- role: ../../roles/wazuh/ansible-wazuh-manager
- role: ../../roles/wazuh/ansible-filebeat-oss
vars:
filebeat_node_name: "wazuh-mgr01"
filebeat_output_indexer_hosts:
- "localhost:9200"
- # 4. Wazuh dashboard
+ # 3. Wazuh dashboard
- role: ../../roles/wazuh/wazuh-dashboard
vars:
dashboard_node_name: "wazuh-dash01"
diff --git a/.github/playbooks/single-wazuh.yml b/.github/playbooks/single-wazuh.yml
index 5f55a22b..164b19a9 100644
--- a/.github/playbooks/single-wazuh.yml
+++ b/.github/playbooks/single-wazuh.yml
@@ -2,6 +2,10 @@
- name: ConvergeCerts
hosts: localhost
roles:
+ - role: ../../roles/wazuh/check-packages
+ become: no
+ delegate_to: localhost
+ run_once: true
- role: ../../roles/wazuh/wazuh-indexer
perform_installation: false
vars:
@@ -15,12 +19,7 @@
- name: ConvergeInstall
hosts: localhost
roles:
- # 1. Check packages
- - role: ../../roles/wazuh/check-packages
- become: no
- delegate_to: localhost
- run_once: true
- # 2. Managers
+ # Managers
- role: ../../roles/wazuh/ansible-wazuh-manager
vars:
- role: ../../roles/wazuh/ansible-filebeat-oss
diff --git a/roles/wazuh/ansible-filebeat-oss/tasks/main.yml b/roles/wazuh/ansible-filebeat-oss/tasks/main.yml
index f86de14b..f39f6e73 100644
--- a/roles/wazuh/ansible-filebeat-oss/tasks/main.yml
+++ b/roles/wazuh/ansible-filebeat-oss/tasks/main.yml
@@ -23,6 +23,9 @@
tags:
- install
- init
+ until: "install is not failed"
+ retries: 10
+ delay: 10
when: ansible_os_family == 'Debian'
- name: Checking if Filebeat Module folder file exists
diff --git a/roles/wazuh/ansible-wazuh-manager/defaults/main.yml b/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
index 108beda1..095e2adc 100644
--- a/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
+++ b/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
@@ -173,6 +173,7 @@ wazuh_manager_sca:
wazuh_manager_vulnerability_detector:
enabled: 'no'
interval: '5m'
+ min_full_scan_interval: '6h'
run_on_start: 'yes'
providers:
- enabled: 'no'
@@ -180,16 +181,25 @@ wazuh_manager_vulnerability_detector:
- 'trusty'
- 'xenial'
- 'bionic'
+ - 'focal'
+ - 'jammy'
update_interval: '1h'
name: '"canonical"'
- enabled: 'no'
os:
- - 'wheezy'
- - 'stretch'
- - 'jessie'
- 'buster'
+ - 'bullseye'
update_interval: '1h'
name: '"debian"'
+ - enabled: 'no'
+ os:
+ - '5'
+ - '6'
+ - '7'
+ - '8'
+ - '9'
+ update_interval: '1h'
+ name: '"redhat"'
- enabled: 'no'
os:
- '8'
@@ -197,11 +207,28 @@ wazuh_manager_vulnerability_detector:
update_interval: '1h'
name: '"almalinux"'
- enabled: 'no'
- update_from_year: '2010'
+ os:
+ - 'amazon-linux'
+ - 'amazon-linux-2'
update_interval: '1h'
- name: '"redhat"'
+ name: '"alas"'
+ - enabled: 'no'
+ os:
+ - '11-server'
+ - '11-desktop'
+ - '12-server'
+ - '12-desktop'
+ - '15-server'
+ - '15-desktop'
+ update_interval: '1h'
+ name: '"suse"'
+ - enabled: 'no'
+ update_interval: '1h'
+ name: '"arch"'
+ - enabled: 'no'
+ update_interval: '1h'
+ name: '"msu"'
- enabled: 'no'
- update_from_year: '2010'
update_interval: '1h'
name: '"nvd"'
diff --git a/roles/wazuh/ansible-wazuh-manager/tasks/main.yml b/roles/wazuh/ansible-wazuh-manager/tasks/main.yml
index 57ee132d..3e3e9a08 100644
--- a/roles/wazuh/ansible-wazuh-manager/tasks/main.yml
+++ b/roles/wazuh/ansible-wazuh-manager/tasks/main.yml
@@ -8,6 +8,10 @@
- tar
- curl
state: present
+ register: package_status
+ until: "package_status is not failed"
+ retries: 10
+ delay: 10
- include_vars: ../../vars/repo_vars.yml
diff --git a/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2 b/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
index cf87a44c..c83dd4fd 100644
--- a/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
+++ b/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
@@ -265,6 +265,9 @@
{% if wazuh_manager_config.vulnerability_detector.interval is defined %}
{{ wazuh_manager_config.vulnerability_detector.interval }}
{% endif %}
+ {% if wazuh_manager_config.vulnerability_detector.min_full_scan_interval is defined %}
+ {{ wazuh_manager_config.vulnerability_detector.min_full_scan_interval }}
+ {% endif %}
{% if wazuh_manager_config.vulnerability_detector.run_on_start is defined %}
{{ wazuh_manager_config.vulnerability_detector.run_on_start }}
{% endif %}
@@ -279,9 +282,6 @@
{{ os_ }}
{% endfor %}
{% endif %}
- {% if provider_.update_from_year is defined %}
- {{ provider_.update_from_year }}
- {% endif %}
{% if provider_.update_interval is defined %}
{{ provider_.update_interval }}
{% endif %}