From f2e3248cf5739ebd9c5295d7ea9ef0261b265828 Mon Sep 17 00:00:00 2001 From: vcerenu Date: Tue, 21 May 2024 07:24:49 -0300 Subject: [PATCH 1/2] change wazuh api username --- playbooks/wazuh-agent.yml | 2 +- roles/elastic-stack/ansible-kibana/defaults/main.yml | 4 ++-- roles/opendistro/opendistro-kibana/defaults/main.yml | 4 ++-- roles/wazuh/ansible-wazuh-agent/defaults/main.yml | 4 ++-- roles/wazuh/wazuh-dashboard/defaults/main.yml | 4 ++-- 5 files changed, 9 insertions(+), 9 deletions(-) diff --git a/playbooks/wazuh-agent.yml b/playbooks/wazuh-agent.yml index 16ff48ae..0d37a1f4 100644 --- a/playbooks/wazuh-agent.yml +++ b/playbooks/wazuh-agent.yml @@ -11,6 +11,6 @@ protocol: tcp api_port: 55000 api_proto: 'https' - api_user: wazuh + api_user: wazuh-wui max_retries: 5 retry_interval: 5 \ No newline at end of file diff --git a/roles/elastic-stack/ansible-kibana/defaults/main.yml b/roles/elastic-stack/ansible-kibana/defaults/main.yml index 2a911a4e..be905bec 100644 --- a/roles/elastic-stack/ansible-kibana/defaults/main.yml +++ b/roles/elastic-stack/ansible-kibana/defaults/main.yml @@ -21,8 +21,8 @@ wazuh_api_credentials: - id: "default" url: "https://localhost" port: 55000 - username: "wazuh" - password: "wazuh" + username: "wazuh-wui" + password: "wazuh-wui" # Xpack Security kibana_xpack_security: false diff --git a/roles/opendistro/opendistro-kibana/defaults/main.yml b/roles/opendistro/opendistro-kibana/defaults/main.yml index 1099b158..edca3551 100644 --- a/roles/opendistro/opendistro-kibana/defaults/main.yml +++ b/roles/opendistro/opendistro-kibana/defaults/main.yml @@ -31,8 +31,8 @@ wazuh_api_credentials: - id: "default" url: "https://localhost" port: 55000 - username: "wazuh" - password: "wazuh" + username: "wazuh-wui" + password: "wazuh-wui" # opendistro Security kibana_opendistro_security: true diff --git a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml index 3adcb206..4f403efd 100644 --- a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml +++ b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml @@ -10,7 +10,7 @@ wazuh_custom_packages_installation_agent_rpm_url: "" wazuh_agent_yum_lock_timeout: 30 # We recommend the use of ansible-vault to protect Wazuh, api, agentless and authd credentials. -api_pass: wazuh +api_pass: wazuh-wui authd_pass: '' wazuh_api_reachable_from_agent: yes @@ -60,7 +60,7 @@ wazuh_managers: protocol: tcp api_port: 55000 api_proto: https - api_user: wazuh + api_user: wazuh-wui max_retries: 5 retry_interval: 5 register: yes diff --git a/roles/wazuh/wazuh-dashboard/defaults/main.yml b/roles/wazuh/wazuh-dashboard/defaults/main.yml index fef884c1..cd36faa1 100644 --- a/roles/wazuh/wazuh-dashboard/defaults/main.yml +++ b/roles/wazuh/wazuh-dashboard/defaults/main.yml @@ -20,8 +20,8 @@ wazuh_api_credentials: - id: "default" url: "https://localhost" port: 55000 - username: "wazuh" - password: "wazuh" + username: "wazuh-wui" + password: "wazuh-wui" # Dashboard Security dashboard_security: true From caaac9ffe13738701a1843b227cf1b5ab30d3866 Mon Sep 17 00:00:00 2001 From: vcerenu Date: Wed, 22 May 2024 04:59:44 -0300 Subject: [PATCH 2/2] revert old yamls --- playbooks/wazuh-agent.yml | 2 +- roles/elastic-stack/ansible-kibana/defaults/main.yml | 4 ++-- roles/opendistro/opendistro-kibana/defaults/main.yml | 4 ++-- roles/wazuh/ansible-wazuh-agent/defaults/main.yml | 4 ++-- 4 files changed, 7 insertions(+), 7 deletions(-) diff --git a/playbooks/wazuh-agent.yml b/playbooks/wazuh-agent.yml index 0d37a1f4..16ff48ae 100644 --- a/playbooks/wazuh-agent.yml +++ b/playbooks/wazuh-agent.yml @@ -11,6 +11,6 @@ protocol: tcp api_port: 55000 api_proto: 'https' - api_user: wazuh-wui + api_user: wazuh max_retries: 5 retry_interval: 5 \ No newline at end of file diff --git a/roles/elastic-stack/ansible-kibana/defaults/main.yml b/roles/elastic-stack/ansible-kibana/defaults/main.yml index be905bec..2a911a4e 100644 --- a/roles/elastic-stack/ansible-kibana/defaults/main.yml +++ b/roles/elastic-stack/ansible-kibana/defaults/main.yml @@ -21,8 +21,8 @@ wazuh_api_credentials: - id: "default" url: "https://localhost" port: 55000 - username: "wazuh-wui" - password: "wazuh-wui" + username: "wazuh" + password: "wazuh" # Xpack Security kibana_xpack_security: false diff --git a/roles/opendistro/opendistro-kibana/defaults/main.yml b/roles/opendistro/opendistro-kibana/defaults/main.yml index edca3551..1099b158 100644 --- a/roles/opendistro/opendistro-kibana/defaults/main.yml +++ b/roles/opendistro/opendistro-kibana/defaults/main.yml @@ -31,8 +31,8 @@ wazuh_api_credentials: - id: "default" url: "https://localhost" port: 55000 - username: "wazuh-wui" - password: "wazuh-wui" + username: "wazuh" + password: "wazuh" # opendistro Security kibana_opendistro_security: true diff --git a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml index 4f403efd..3adcb206 100644 --- a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml +++ b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml @@ -10,7 +10,7 @@ wazuh_custom_packages_installation_agent_rpm_url: "" wazuh_agent_yum_lock_timeout: 30 # We recommend the use of ansible-vault to protect Wazuh, api, agentless and authd credentials. -api_pass: wazuh-wui +api_pass: wazuh authd_pass: '' wazuh_api_reachable_from_agent: yes @@ -60,7 +60,7 @@ wazuh_managers: protocol: tcp api_port: 55000 api_proto: https - api_user: wazuh-wui + api_user: wazuh max_retries: 5 retry_interval: 5 register: yes