afmarulanda/wazuh-ansible-4.8.1
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #624 from wazuh/Add-changes-to-4.2

Browse Source 
Add changes to 4.2
This commit is contained in:
Alberto Rodríguez 2021-08-26 15:07:08 +02:00 committed by GitHub
commit 691be0ec0f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 10 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
playbooks/wazuh-agent.yml
View File

@ -1,5 +1,7 @@
--- ---
- hosts: <your wazuh agents hosts> - hosts: <your wazuh agents hosts>
become: yes
become_user: root
roles: roles:
- ../roles/wazuh/ansible-wazuh-agent - ../roles/wazuh/ansible-wazuh-agent
vars: vars:

2
roles/opendistro/opendistro-kibana/defaults/main.yml
View File

@ -41,7 +41,7 @@ kibana_telemetry_optin: "false"
kibana_telemetry_enabled: "false" kibana_telemetry_enabled: "false"
opendistro_admin_password: changeme opendistro_admin_password: changeme
opendistro_kibana_user: changeme opendistro_kibana_user: kibanaserver
opendistro_kibana_password: changeme opendistro_kibana_password: changeme
local_certs_path: "{{ playbook_dir }}/opendistro/certificates" local_certs_path: "{{ playbook_dir }}/opendistro/certificates"

29
roles/wazuh/ansible-wazuh-manager/defaults/main.yml
View File

@ -252,39 +252,24 @@ wazuh_manager_syscheck:
## Command ## Command
wazuh_manager_commands: wazuh_manager_commands:
- name: 'disable-account' - name: 'disable-account'
executable: 'disable-account.sh' executable: 'disable-account'
expect: 'user'
timeout_allowed: 'yes' timeout_allowed: 'yes'
- name: 'restart-ossec' - name: 'restart-wazuh'
executable: 'restart-ossec.sh' executable: 'restart-wazuh'
expect: ''
- name: 'firewall-drop' - name: 'firewall-drop'
executable: 'firewall-drop' executable: 'firewall-drop'
expect: 'srcip'
timeout_allowed: 'yes' timeout_allowed: 'yes'
- name: 'host-deny' - name: 'host-deny'
executable: 'host-deny.sh' executable: 'host-deny'
expect: 'srcip'
timeout_allowed: 'yes' timeout_allowed: 'yes'
- name: 'route-null' - name: 'route-null'
executable: 'route-null.sh' executable: 'route-null'
expect: 'srcip'
timeout_allowed: 'yes' timeout_allowed: 'yes'
- name: 'win_route-null' - name: 'win_route-null'
executable: 'route-null.cmd' executable: 'route-null.exe'
expect: 'srcip'
timeout_allowed: 'yes'
- name: 'win_route-null-2012'
executable: 'route-null-2012.cmd'
expect: 'srcip'
timeout_allowed: 'yes' timeout_allowed: 'yes'
- name: 'netsh' - name: 'netsh'
executable: 'netsh.cmd' executable: 'netsh.exe'
expect: 'srcip'
timeout_allowed: 'yes'
- name: 'netsh-win-2016'
executable: 'netsh-win-2016.cmd'
expect: 'srcip'
timeout_allowed: 'yes' timeout_allowed: 'yes'
## Localfile ## Localfile

1
roles/wazuh/ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2
View File

@ -369,7 +369,6 @@
<command> <command>
<name>{{ command.name }}</name> <name>{{ command.name }}</name>
<executable>{{ command.executable }}</executable> <executable>{{ command.executable }}</executable>
<expect>{{ command.expect }}</expect>
{% if command.timeout_allowed is defined %} {% if command.timeout_allowed is defined %}
<timeout_allowed>{{ command.timeout_allowed }}</timeout_allowed> <timeout_allowed>{{ command.timeout_allowed }}</timeout_allowed>
{% endif %} {% endif %}