diff --git a/README.md b/README.md index 49888e57..85075530 100644 --- a/README.md +++ b/README.md @@ -158,33 +158,6 @@ The hereunder example playbook uses the `wazuh-ansible` role to provision a prod - "{{ hostvars.wi2.private_ip }}" - "{{ hostvars.wi3.private_ip }}" indexer_node_master: true - instances: - node1: - name: node-1 # Important: must be equal to indexer_node_name. - ip: "{{ hostvars.wi1.private_ip }}" # When unzipping, the node will search for its node name folder to get the cert. - role: indexer - node2: - name: node-2 - ip: "{{ hostvars.wi2.private_ip }}" - role: indexer - node3: - name: node-3 - ip: "{{ hostvars.wi3.private_ip }}" - role: indexer - node4: - name: node-4 - ip: "{{ hostvars.manager.private_ip }}" - role: wazuh - node_type: master - node5: - name: node-5 - ip: "{{ hostvars.worker.private_ip }}" - role: wazuh - node_type: worker - node6: - name: node-6 - ip: "{{ hostvars.dashboard.private_ip }}" - role: dashboard # Wazuh cluster - hosts: manager @@ -251,24 +224,10 @@ The hereunder example playbook uses the `wazuh-ansible` role to provision a prod # Wazuh dashboard node - hosts: dashboard roles: - - role: "../roles/wazuh/wazuh-indexer" - role: "../roles/wazuh/wazuh-dashboard" become: yes become_user: root vars: - indexer_network_host: "{{ hostvars.dashboard.private_ip }}" - indexer_node_name: node-6 - indexer_node_master: false - indexer_node_ingest: false - indexer_node_data: false - indexer_cluster_nodes: - - "{{ hostvars.wi1.private_ip }}" - - "{{ hostvars.wi2.private_ip }}" - - "{{ hostvars.wi3.private_ip }}" - indexer_discovery_nodes: - - "{{ hostvars.wi1.private_ip }}" - - "{{ hostvars.wi2.private_ip }}" - - "{{ hostvars.wi3.private_ip }}" dashboard_node_name: node-6 wazuh_api_credentials: - id: default @@ -277,32 +236,6 @@ The hereunder example playbook uses the `wazuh-ansible` role to provision a prod username: custom-user password: SecretPassword1! instances: - node1: - name: node-1 - ip: "{{ hostvars.wi1.private_ip }}" # When unzipping, the node will search for its node name folder to get the cert. - role: indexer - node2: - name: node-2 - ip: "{{ hostvars.wi2.private_ip }}" - role: indexer - node3: - name: node-3 - ip: "{{ hostvars.wi3.private_ip }}" - role: indexer - node4: - name: node-4 - ip: "{{ hostvars.manager.private_ip }}" - role: wazuh - node_type: master - node5: - name: node-5 - ip: "{{ hostvars.worker.private_ip }}" - role: wazuh - node_type: worker - node6: - name: node-6 - ip: "{{ hostvars.dashboard.private_ip }}" - role: dashboard ansible_shell_allow_world_readable_temp: true ``` diff --git a/playbooks/wazuh-production-ready.yml b/playbooks/wazuh-production-ready.yml index 26a33d98..642e0625 100644 --- a/playbooks/wazuh-production-ready.yml +++ b/playbooks/wazuh-production-ready.yml @@ -64,33 +64,6 @@ - "{{ hostvars.wi2.private_ip }}" - "{{ hostvars.wi3.private_ip }}" indexer_node_master: true - instances: - node1: - name: node-1 # Important: must be equal to indexer_node_name. - ip: "{{ hostvars.wi1.private_ip }}" # When unzipping, the node will search for its node name folder to get the cert. - role: indexer - node2: - name: node-2 - ip: "{{ hostvars.wi2.private_ip }}" - role: indexer - node3: - name: node-3 - ip: "{{ hostvars.wi3.private_ip }}" - role: indexer - node4: - name: node-4 - ip: "{{ hostvars.manager.private_ip }}" - role: wazuh - node_type: master - node5: - name: node-5 - ip: "{{ hostvars.worker.private_ip }}" - role: wazuh - node_type: worker - node6: - name: node-6 - ip: "{{ hostvars.dashboard.private_ip }}" - role: dashboard # Wazuh cluster - hosts: manager @@ -154,27 +127,13 @@ - "{{ hostvars.wi2.private_ip }}" - "{{ hostvars.wi3.private_ip }}" -# Indexer + dashboard node +# Wazuh dashboard node - hosts: dashboard roles: - - role: "../roles/wazuh/wazuh-indexer" - role: "../roles/wazuh/wazuh-dashboard" become: yes become_user: root vars: - indexer_network_host: "{{ hostvars.dashboard.private_ip }}" - indexer_node_name: node-6 - indexer_node_master: false - indexer_node_ingest: false - indexer_node_data: false - indexer_cluster_nodes: - - "{{ hostvars.wi1.private_ip }}" - - "{{ hostvars.wi2.private_ip }}" - - "{{ hostvars.wi3.private_ip }}" - indexer_discovery_nodes: - - "{{ hostvars.wi1.private_ip }}" - - "{{ hostvars.wi2.private_ip }}" - - "{{ hostvars.wi3.private_ip }}" dashboard_node_name: node-6 wazuh_api_credentials: - id: default @@ -182,31 +141,4 @@ port: 55000 username: custom-user password: SecretPassword1! - instances: - node1: - name: node-1 - ip: "{{ hostvars.wi1.private_ip }}" # When unzipping, the node will search for its node name folder to get the cert. - role: indexer - node2: - name: node-2 - ip: "{{ hostvars.wi2.private_ip }}" - role: indexer - node3: - name: node-3 - ip: "{{ hostvars.wi3.private_ip }}" - role: indexer - node4: - name: node-4 - ip: "{{ hostvars.manager.private_ip }}" - role: wazuh - node_type: master - node5: - name: node-5 - ip: "{{ hostvars.worker.private_ip }}" - role: wazuh - node_type: worker - node6: - name: node-6 - ip: "{{ hostvars.dashboard.private_ip }}" - role: dashboard ansible_shell_allow_world_readable_temp: true