diff --git a/roles/elastic-stack/ansible-kibana/tasks/main.yml b/roles/elastic-stack/ansible-kibana/tasks/main.yml
index 78d15630..44643ebd 100755
--- a/roles/elastic-stack/ansible-kibana/tasks/main.yml
+++ b/roles/elastic-stack/ansible-kibana/tasks/main.yml
@@ -98,6 +98,14 @@
name: kibana
state: started
+- name: Ensuring Kibana directory owner
+ file:
+ path: "/usr/share/kibana"
+ state: directory
+ owner: kibana
+ group: kibana
+ recurse: yes
+
- name: Build and Install Wazuh Kibana Plugin from sources
import_tasks: build_wazuh_plugin.yml
when:
diff --git a/roles/opendistro/opendistro-kibana/tasks/main.yml b/roles/opendistro/opendistro-kibana/tasks/main.yml
index e127f2f9..ff324bf8 100755
--- a/roles/opendistro/opendistro-kibana/tasks/main.yml
+++ b/roles/opendistro/opendistro-kibana/tasks/main.yml
@@ -41,6 +41,14 @@
- install
- configure
+- name: Ensuring Kibana directory owner
+ file:
+ path: "/usr/share/kibana"
+ state: directory
+ owner: kibana
+ group: kibana
+ recurse: yes
+
- name: Build and Install Wazuh Kibana Plugin from sources
import_tasks: build_wazuh_plugin.yml
when:
diff --git a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml
index 4d9fec35..88bd6ab0 100644
--- a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml
+++ b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml
@@ -237,16 +237,6 @@ wazuh_agent_config:
java_path_win: '\\server\jre\bin\java.exe'
ciscat_path: 'wodles/ciscat'
ciscat_path_win: 'C:\cis-cat'
- vuls:
- disable: 'yes'
- interval: '1d'
- run_on_start: 'yes'
- args:
- - 'mincvss 5'
- - 'antiquity-limit 20'
- - 'updatenvd'
- - 'nvd-year 2016'
- - 'autoupdate'
localfiles:
debian:
- format: 'syslog'
diff --git a/roles/wazuh/ansible-wazuh-agent/tasks/Linux.yml b/roles/wazuh/ansible-wazuh-agent/tasks/Linux.yml
index 70987a01..fdfd87a9 100644
--- a/roles/wazuh/ansible-wazuh-agent/tasks/Linux.yml
+++ b/roles/wazuh/ansible-wazuh-agent/tasks/Linux.yml
@@ -185,19 +185,6 @@
- config
- api
-- name: Linux | Vuls integration deploy (runs in background, can take a while)
- command: /var/ossec/wodles/vuls/deploy_vuls.sh {{ ansible_distribution|lower }} {{ ansible_distribution_major_version|int }}
- args:
- creates: /var/ossec/wodles/vuls/config.toml
- async: 3600
- poll: 0
- when:
- - wazuh_agent_config.vuls.disable != 'yes'
- - ansible_distribution in ['Redhat', 'CentOS', 'Ubuntu', 'Debian', 'Oracle']
- - not ansible_check_mode
- tags:
- - init
-
- name: Linux | Installing agent configuration (ossec.conf)
template: src=var-ossec-etc-ossec-agent.conf.j2
dest=/var/ossec/etc/ossec.conf
diff --git a/roles/wazuh/ansible-wazuh-agent/templates/var-ossec-etc-ossec-agent.conf.j2 b/roles/wazuh/ansible-wazuh-agent/templates/var-ossec-etc-ossec-agent.conf.j2
index a1e79db5..1077ce3d 100644
--- a/roles/wazuh/ansible-wazuh-agent/templates/var-ossec-etc-ossec-agent.conf.j2
+++ b/roles/wazuh/ansible-wazuh-agent/templates/var-ossec-etc-ossec-agent.conf.j2
@@ -296,18 +296,6 @@
{% endif %}
-
- {% if ansible_system == "Linux" and wazuh_agent_config.vuls.disable == 'no' %}
-
- no
- Wazuh-VULS
- /usr/bin/python /var/ossec/wodles/vuls/vuls.py{% for arg in wazuh_agent_config.vuls.args %} --{{ arg }}{% endfor %}
- {{ wazuh_agent_config.vuls.interval }}
- yes
- {{ wazuh_agent_config.vuls.run_on_start }}
-
- {% endif %}
-
{% if ansible_system == "Linux" %}
{% for localfile in wazuh_agent_config.localfiles.linux %}
diff --git a/roles/wazuh/ansible-wazuh-manager/defaults/main.yml b/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
index bdc7c0e5..50c54990 100644
--- a/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
+++ b/roles/wazuh/ansible-wazuh-manager/defaults/main.yml
@@ -256,16 +256,6 @@ wazuh_manager_config:
update_from_year: '2010'
update_interval: '1h'
name: '"nvd"'
- vuls:
- disable: 'yes'
- interval: '1d'
- run_on_start: 'yes'
- args:
- - 'mincvss 5'
- - 'antiquity-limit 20'
- - 'updatenvd'
- - 'nvd-year 2016'
- - 'autoupdate'
log_level: 3
email_level: 12
localfiles:
diff --git a/roles/wazuh/ansible-wazuh-manager/tasks/main.yml b/roles/wazuh/ansible-wazuh-manager/tasks/main.yml
index efd71eb3..bbea6295 100644
--- a/roles/wazuh/ansible-wazuh-manager/tasks/main.yml
+++ b/roles/wazuh/ansible-wazuh-manager/tasks/main.yml
@@ -263,19 +263,6 @@
- init
- config
-- name: Linux | Vuls integration deploy (runs in background, can take a while)
- command: /var/ossec/wodles/vuls/deploy_vuls.sh {{ ansible_distribution|lower }} {{ ansible_distribution_major_version|int }}
- args:
- creates: /var/ossec/wodles/vuls/config.toml
- async: 3600
- poll: 0
- when:
- - wazuh_manager_config.vuls.disable != 'yes'
- - ansible_distribution in ['Redhat', 'CentOS', 'Ubuntu', 'Debian', 'Oracle', 'Amazon']
- - not ansible_check_mode
- tags:
- - init
-
- name: Configure ossec.conf
template: src=var-ossec-etc-ossec-server.conf.j2
dest=/var/ossec/etc/ossec.conf
diff --git a/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2 b/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
index 53565007..b1c48fd1 100644
--- a/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
+++ b/roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
@@ -374,17 +374,6 @@
{% endfor %}
-{% if ansible_system == "Linux" and wazuh_manager_config.vuls.disable == 'no' %}
-
- no
- Wazuh-VULS
- /usr/bin/python /var/ossec/wodles/vuls/vuls.py{% for arg in wazuh_manager_config.vuls.args %} --{{ arg }}{% endfor %}
- {{ wazuh_manager_config.vuls.interval }}
- yes
- {{ wazuh_manager_config.vuls.run_on_start }}
-
-{% endif -%}
-
{% if agentless_creds is defined %}
{% for agentless in agentless_creds %}