afmarulanda/wazuh-ansible-4.8.1
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7cce8e9490
wazuh-ansible-4.8.1/roles/wazuh/ansible-wazuh-agent
History
singuliere 7cce8e9490
make agent registration delegate_to configurable 
Registering to the API requires the port 55000 of the wazuh manager is
open. Depending on the firewall policy, it may be true from the
ansible controller, reason why it was delegated to localhost in the
original implementation at 6cb6d3bda8

The role should be more flexible and allow for the API call to be made
from the ansible controller or the host.

Implementation note: although it would be more elegant to use omit
instead of inventory_hostname, it is not possible because of an
ansible bug at this time https://github.com/ansible/ansible/issues/26009

Fixes: https://github.com/wazuh/wazuh-ansible/issues/126

Signed-off-by: singuliere <singuliere@autistici.org>
2019-01-10 17:24:23 +01:00
..
defaults make agent registration delegate_to configurable 2019-01-10 17:24:23 +01:00
handlers Restructure repository (#66) 2018-10-04 12:40:10 +02:00
meta Restructure repository (#66) 2018-10-04 12:40:10 +02:00
tasks make agent registration delegate_to configurable 2019-01-10 17:24:23 +01:00
templates os_family localfiles 2018-12-13 13:42:15 +00:00
vars Restructure repository (#66) 2018-10-04 12:40:10 +02:00
README.md Restructure repository (#66) 2018-10-04 12:40:10 +02:00

README.md

Ansible Playbook - Wazuh agent

This role will install and configure a Wazuh Agent.

OS Requirements

This role is compatible with:

  • Red Hat
  • CentOS
  • Fedora
  • Debian
  • Ubuntu

Role Variables

  • wazuh_managers: Collection of Wazuh Managers' IP address, port, and protocol used by the agent
  • wazuh_agent_authd: Collection with the settings to register an agent using authd.

Playbook example

The following is an example of how this role can be used:

 - hosts: all:!wazuh-manager
   roles:
     - ansible-wazuh-agent
   vars:
     wazuh_managers:
       - address: 127.0.0.1
         port: 1514
         protocol: udp
         api_port: 55000
         api_proto: 'http'
         api_user: 'ansible'
     wazuh_agent_authd:
       enable: true
       port: 1515
       ssl_agent_ca: null
       ssl_auto_negotiate: 'no'

License and copyright

WAZUH Copyright (C) 2018 Wazuh Inc. (License GPLv3)

Based on previous work from dj-wasabi

Modified by Wazuh

The playbooks have been modified by Wazuh, including some specific requirements, templates and configuration to improve integration with Wazuh ecosystem.