#jinja2: trim_blocks: False {% for manager in wazuh_managers %}
{{ manager.address }}
{% if manager.port is defined %} {{ manager.port }} {% endif %} {% if manager.protocol is defined %} {{ manager.protocol }} {% endif %} {% endfor %} {% if wazuh_profile is not none %} {{ wazuh_profile }} {% endif %} {% if wazuh_notify_time is not none and wazuh_time_reconnect is not none %} {{ wazuh_notify_time }} {{ wazuh_time_reconnect }} {% endif %} {{ wazuh_auto_restart }} {{ wazuh_agent_config.log_format }} {{ wazuh_agent_config.active_response_disabled|default('no') }} {% if wazuh_agent_config.rootcheck is defined %} no yes yes yes yes yes yes yes yes {{ wazuh_agent_config.rootcheck.frequency }} {% if ansible_os_family == "Windows" %} ./shared/win_audit_rcl.txt ./shared/win_applications_rcl.txt ./shared/win_malware_rcl.txt {% endif %} {% if ansible_system == "Linux" %} /var/ossec/etc/shared/rootkit_files.txt /var/ossec/etc/shared/rootkit_trojans.txt /var/ossec/etc/shared/system_audit_rcl.txt /var/ossec/etc/shared/system_audit_ssh.txt {% if cis_distribution_filename is defined %} /var/ossec/etc/shared/{{ cis_distribution_filename }} {% endif %} {% endif %} yes {% endif %} {% if wazuh_agent_config.syscheck is defined %} no {% if ansible_system == "Linux" %} /var/ossec/etc/shared {% endif %} {{ wazuh_agent_config.syscheck.auto_ignore }} {{ wazuh_agent_config.syscheck.alert_new_files }} {{ wazuh_agent_config.syscheck.frequency }} {{ wazuh_agent_config.syscheck.scan_on_start }} {% if wazuh_agent_config.syscheck.directories is defined %} {% for directory in wazuh_agent_config.syscheck.directories %} {{ directory.dirs }} {% endfor %} {% endif %} {% if wazuh_agent_config.syscheck.ignore is defined %} {% for ignore in wazuh_agent_config.syscheck.ignore %} {{ ignore }} {% endfor %} {% endif %} {% for no_diff in wazuh_agent_config.syscheck.no_diff %} {{ no_diff }} {% endfor %} {% if ansible_os_family == "Windows" %} {% for registry_key in wazuh_agent_config.syscheck.windows_registry %} {% if registry_key.arch is defined %} {{ registry_key.key }} {% else %} {{ registry_key.key }} {% endif %} {% endfor %} {% endif %} {% endif %} {% if ansible_system == "Linux" and wazuh_agent_config.openscap.disable == 'no' %} no {{ wazuh_agent_config.openscap.timeout }} {{ wazuh_agent_config.openscap.interval }} {{ wazuh_agent_config.openscap.scan_on_start }} {% if ansible_distribution == 'Ubuntu' and ansible_distribution_release == 'xenial' %} xccdf_org.ssgproject.content_profile_common {% elif ansible_distribution == 'Debian' %} {% if ansible_distribution_release == 'jessie' %} {% if openscap_version_valid.stdout == "0" %} xccdf_org.ssgproject.content_profile_common {% endif %} {% elif ansible_distribution_release == 'stretch' %} {% endif %} {% elif ansible_distribution == 'CentOS' %} {% if ansible_distribution_major_version == '7' %} {% elif ansible_distribution_major_version == '6' %} {% endif %} xccdf_org.ssgproject.content_profile_pci-dss xccdf_org.ssgproject.content_profile_common {% elif ansible_distribution == 'RedHat' %} {% if ansible_distribution_major_version == '7' %} {% elif ansible_distribution_major_version == '6' %} {% endif %} xccdf_org.ssgproject.content_profile_pci-dss xccdf_org.ssgproject.content_profile_common {% if ansible_distribution_major_version == '7' %} {% elif ansible_distribution_major_version == '6' %} {% endif %} {% elif ansible_distribution == 'Fedora' %} xccdf_org.ssgproject.content_profile_pci-dss xccdf_org.ssgproject.content_profile_common {% endif %} {% endif %} {% if ansible_system == "Linux" and wazuh_agent_config.cis_cat.disable == 'no' %} no {{ wazuh_agent_config.cis_cat.timeout }} {{ wazuh_agent_config.cis_cat.interval }} {{ wazuh_agent_config.cis_cat.scan_on_start }} {% if wazuh_agent_config.cis_cat.install_java == 'yes' and ansible_system == "Linux" %} /usr/bin {% else %} {{ wazuh_agent_config.cis_cat.java_path }} {% endif %} {{ wazuh_agent_config.cis_cat.ciscat_path }} {% for benchmark in wazuh_agent_config.cis_cat.content %} {{ benchmark.profile }} {% endfor %} {% endif %} {% if ansible_system == "Linux" and wazuh_agent_config.vuls.disable == 'no' %} no Wazuh-VULS /usr/bin/python /var/ossec/wodles/vuls/vuls.py{% for arg in wazuh_agent_config.vuls.args %} --{{ arg }}{% endfor %} {{ wazuh_agent_config.vuls.interval }} yes {{ wazuh_agent_config.vuls.run_on_start }} {% endif %} {% for localfile in wazuh_agent_config.localfiles %} {{ localfile.format }} {% if localfile.format == 'command' or localfile.format == 'full_command' %} {{ localfile.command }} {{ localfile.frequency }} {% else %} {{ localfile.location }} {% endif %} {% endfor %}