Single node deployment update

README.md

@@ -304,35 +304,51 @@ The hereunder example playbook uses the `wazuh-ansible` role to provision a sing
 
 ```yaml
 ---
+# Certificates generation
+  - hosts: aio
+    roles:
+      - role: ../roles/opensearch/wazuh-indexer
+        perform_installation: false
+    become: no
+    #become_user: root
+    vars:
+      indexer_node_master: true
+      instances:
+        node1:
+          name: node-1       # Important: must be equal to indexer_node_name.
+          ip: 127.0.0.1
+          role: indexer
+    tags:
+      - generate-certs
 # Single node
-    - hosts: server
+  - hosts: aio
-      become: yes
+    become: yes
-      become_user: root
+    become_user: root
-      roles:
+    roles:
-        - role: ../roles/opendistro/opendistro-elasticsearch
+      - role: ../roles/opensearch/wazuh-indexer
-        - role: "../roles/wazuh/ansible-wazuh-manager"
+      - role: ../roles/wazuh/ansible-wazuh-manager
-        - role: "../roles/wazuh/ansible-filebeat-oss"
+      - role: ../roles/wazuh/ansible-filebeat-oss
-        - role: "../roles/opendistro/opendistro-kibana"
+      - role: ../roles/opensearch/wazuh-dashboard
-      vars:
+    vars:
-        single_node: true
+      single_node: true
-        minimum_master_nodes: 1
+      minimum_master_nodes: 1
-        elasticsearch_node_master: true
+      indexer_node_master: true
-        elasticsearch_network_host: <your server host>
+      indexer_network_host: 127.0.0.1
-        filebeat_node_name: node-1
+      filebeat_node_name: node-1
-        filebeat_output_indexer_hosts: <your server host>
+      filebeat_output_indexer_hosts:
-        ansible_ssh_user: vagrant
+      - 127.0.0.1
-        ansible_ssh_private_key_file: /path/to/ssh/key.pem
+      instances:
-        ansible_ssh_extra_args: '-o StrictHostKeyChecking=no'
+        node1:
-        instances:
+          name: node-1       # Important: must be equal to indexer_node_name.
-          node1:
+          ip: 127.0.0.1
-            name: node-1       # Important: must be equal to elasticsearch_node_name.
+          role: indexer
-            ip: <your server host>
+      ansible_shell_allow_world_readable_temp: true
 ```
 
 ### Inventory file
 
 ```ini
-[server]
+[aio]
 <your server host>
 
 [all:vars]
@@ -344,7 +360,7 @@ ansible_ssh_extra_args='-o StrictHostKeyChecking=no'
 ### Launching the playbook
 
 ```bash
-ansible-playbook wazuh-odfe-single.yml -i inventory
+sudo ansible-playbook wazuh-opensearch-single.yml -i inventory
 ```
 
 After the playbook execution, the Wazuh UI should be reachable through `https://<your server host>:5601`

playbooks/wazuh-opensearch-single.yml

@@ -1,6 +1,22 @@
 ---
+# Certificates generation
+  - hosts: aio
+    roles:
+      - role: ../roles/opensearch/wazuh-indexer
+        perform_installation: false
+    become: no
+    #become_user: root
+    vars:
+      indexer_node_master: true
+      instances:
+        node1:
+          name: node-1       # Important: must be equal to indexer_node_name.
+          ip: 127.0.0.1
+          role: indexer
+    tags:
+      - generate-certs
 # Single node
-  - hosts: <your server host>  
+  - hosts: aio
     become: yes
     become_user: root
     roles:
@@ -14,9 +30,11 @@
       indexer_node_master: true
       indexer_network_host: 127.0.0.1
       filebeat_node_name: node-1
-      filebeat_output_indexer_hosts: 127.0.0.1
+      filebeat_output_indexer_hosts:
+      - 127.0.0.1
       instances:
         node1:
           name: node-1       # Important: must be equal to indexer_node_name.
           ip: 127.0.0.1
+          role: indexer
       ansible_shell_allow_world_readable_temp: true

roles/opensearch/wazuh-dashboard/defaults/main.yml

@@ -9,7 +9,9 @@ dashboard_server_host: "0.0.0.0"
 dashboard_server_port: "5601"
 dashboard_server_name: "dashboard"
 wazuh_version: 4.3.0
-
+indexer_cluster_nodes:
+  - 127.0.0.1
+  
 # The Wazuh dashboard package repository
 dashboard_version: "4.3.0"
 

roles/opensearch/wazuh-dashboard/tasks/Debian.yml

@@ -17,6 +17,7 @@
     apt:
       name: "wazuh-dashboard={{ dashboard_version }}-1"
       state: present
+      update_cache: yes
     register: install
 
   tags:

roles/opensearch/wazuh-dashboard/tasks/RedHat.yml

@@ -14,6 +14,7 @@
     package:
       name: "wazuh-dashboard-{{ dashboard_version }}"
       state: present
+      update_cache: yes
     register: install
     
   tags:

roles/opensearch/wazuh-dashboard/tasks/main.yml

@@ -72,7 +72,7 @@
     mode: 0751
   changed_when: False
 
-- name: Configure opensearch.password in opensearch.keystore
+- name: Configure opensearch.password in opensearch_dashboards.keystore
   shell: >-
     echo {{ dashboard_password }} | /usr/share/wazuh-dashboard/bin/opensearch-dashboards-keystore --allow-root add -f --stdin opensearch.password
   args:

roles/opensearch/wazuh-indexer/tasks/RMRedHat.yml

@@ -1,6 +1,5 @@
 ---
 - name: RedHat/CentOS/Fedora | Remove Wazuh-Indexer repository (and clean up left-over metadata)
-  ## 732 will not be needed and if it is needed the wazuh repo should be removed.
   yum_repository:
     name: wazuh_repo
     state: absent