These configuraiton artifacts can be used to configure MidPoint itegration with Wazuh. Please follow each project documentation for details.
- Audid appender configuration. Use to update your MidPoint system configuration.
- Decoders: MidPoint specific decoders, can ingest events from the audit log generated by MidPoint.
- Rules: MidPoint sample rules to identify different types of user activities in MidPoint
- Groups: Wazuh group configuration to enable MidPoint specific rules. Attach your Wazuh agents running in MidPoint servers to this group.
- SCA: Midpoint security configuration assestment policy file.
- Integration: Sample python client to disable user through MidPoint