Wazuh manager and agent
Last updated
Last updated
This repository contains Ansible playbooks, inventory, and scripts designed to automate the installation and configuration of Wazuh (Manager and Agent). This project simplifies setting up and managing these components in your environment.
Get the repo:
Ansible Installed: Ensure Ansible is installed on your control node.
SSH Access: Passwordless SSH access should be configured between the control node and target systems.
Dependencies:
Target systems should have internet access to download necessary packages.
Ensure sudo privileges on target systems.
Update the inventory/hosts file to define the target systems for the Wazuh Manager and Agent installation. Below is an example:
If needed, customize the variables in the playbooks or scripts to match your environment.
Execute the main playbook to set up Docker, Wazuh Manager, and Wazuh Agent:
For Wazuh Manager:
Ensure the Wazuh Manager service is running on the designated host.
For Wazuh Agent:
Verify the Wazuh Agent is connected to the Wazuh Manager.
wazuh-agent-setup.sh: Sets up the Wazuh Agent on the target system.
wazuh-server-setup.sh: Configures and starts the Wazuh Manager.
wazuh-agent.yml: Configures Wazuh Agent on the target host.
wazuh-setup.yml: Configures Wazuh Manager.
On manager
On Wazuh agent
Need to be manually setup kibana which I will mention on page:
