Merge pull request #90 from wazuh/Issue-77_conflict_configurations

Agent configuration and monitoring

CHANGELOG.md

@@ -11,11 +11,14 @@ All notable changes to this project will be documented in this file.
 
  - Changed windows agent version ([#89](https://github.com/wazuh/wazuh-ansible/pull/89))
  
+### Fixed
+
+- Solve the conflict betwwen tha agent configuration and the shared master configuration. Also include monitoring for `/var/log/auth.log` ([#90](https://github.com/wazuh/wazuh-ansible/pull/90))
+
 ### Removed
 
 - clean old code for windows agent ([#86](https://github.com/wazuh/wazuh-ansible/pull/86))
 
-
 ## v3.7.0-3701
 
 ### Added

roles/wazuh/ansible-wazuh-agent/defaults/main.yml

@@ -90,6 +90,8 @@ wazuh_agent_config:
       location: '/var/log/messages'
     - format: 'syslog'
       location: '/var/log/secure'
+    - format: 'syslog'
+      location: 'var/log/auth.log'
     - format: 'command'
       command: 'df -P'
       frequency: '360'

roles/wazuh/ansible-wazuh-manager/defaults/main.yml

@@ -221,11 +221,10 @@ wazuh_agent_configs:
       - /etc/svc/volatile
       no_diff:
         - /etc/ssl/private.key
-      directories:
+      # Example
-        - dirs: /etc,/usr/bin,/usr/sbin
+      #directories:
-          checks: 'check_all="yes"'
+        #- dirs: /etc,/usr/bin,/usr/sbin
-        - dirs: /bin,/sbin
+        #  checks: 'check_all="yes"'
-          checks: 'check_all="yes"'
     rootcheck:
       frequency: 43200
       cis_distribution_filename: null