afmarulanda/wazuh-ansible-4.8.1
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update RHEL repositories and add ansible-vault file for api user

Browse Source
This commit is contained in:
Jose Luis 2017-04-05 12:56:14 -04:00
parent a5a7ec9026
commit f2aaa49465
7 changed files with 17 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
ansible-wazuh-agent/templates/var-ossec-etc-ossec-agent.conf.j2
View File

@ -6,6 +6,7 @@
{% if ossec_profile is defined %} {% if ossec_profile is defined %}
<config-profile>{{ ossec_profile }}</config-profile> <config-profile>{{ ossec_profile }}</config-profile>
{% endif %} {% endif %}
<protocol>tcp</protocol>
</client> </client>
{% if ansible_distribution == 'Ubuntu' and ansible_distribution_release == 'xenial' %} {% if ansible_distribution == 'Ubuntu' and ansible_distribution_release == 'xenial' %}

6
ansible-wazuh-server/README.md
View File

@ -21,6 +21,12 @@ ossec_server_config: []
ossec_agent_configs: [] ossec_agent_configs: []
``` ```
---
user: "jose:$apr1$XSwG938n$tDxKvaCBx5C/kdU2xXP3K."
###Example setup ###Example setup
Edit the vars file for the host which runs the ossec-server: Edit the vars file for the host which runs the ossec-server:

3
ansible-wazuh-server/tasks/RedHat.yml
View File

@ -27,9 +27,6 @@
gpgcheck: yes gpgcheck: yes
when: ansible_distribution == 'RedHat' when: ansible_distribution == 'RedHat'
- name: RedHat | Install epel repo
yum: name=https://dl.fedoraproject.org/pub/epel/epel-release-latest-{{ansible_distribution_major_version}}.noarch.rpm state=present
- name: RedHat | Install Wazuh Manager and Wazuh Api - name: RedHat | Install Wazuh Manager and Wazuh Api
yum: pkg={{ item }} yum: pkg={{ item }}
state=present state=present

4
ansible-wazuh-server/vars/main.yml
View File

@ -1,6 +1,6 @@
ossec_server_config: ossec_server_config:
mail_to: mail_to:
- jose@wazuh.com - victor@wazuh.com
mail_smtp_server: localhost mail_smtp_server: localhost
mail_from: ossec@example.com mail_from: ossec@example.com
frequency_check: 43200 frequency_check: 43200
@ -46,7 +46,7 @@ ossec_server_config:
connection: connection:
- type: 'secure' - type: 'secure'
port: '1514' port: '1514'
protocol: 'udp' protocol: 'tcp'
log_level: 1 log_level: 1
email_level: 12 email_level: 12
commands: commands:

1
passwd Normal file
View File

@ -0,0 +1 @@
test

6
user.yml Normal file
View File

@ -0,0 +1,6 @@
$ANSIBLE_VAULT;1.1;AES256
66616434393463353338336137323935333863353166656135643764626431396331383331353339
3637383166363739306238306465303232623239376263630a613838376432373733633838616632
35636137636665663039336436363962356533353033386239336362343965656361393738316536
3838303338383764610a376232313734643737623330396335383062653136656136633934336135
3336

2
wazuh-agent.yml
View File

@ -1,3 +1,3 @@
- hosts: all:!wazuh-manager - hosts: all:!wazuh-manager
roles: roles:
- { role: ansible-wazuh-agent, ossec_server_ip: 192.168.33.183 } - { role: ansible-wazuh-agent, ossec_server_ip: 192.168.33.169 }