These cookbooks install and configure a Wazuh Agent on specified nodes.
Currently, the agent is automatically registered using enrollment. check the documentation for further information. The manager IP address has to be declared in the node['ossec']['address'] attribute.
versions.rbcontains version attributes to make it easier when it comes to bump version- The rest of files contains all the default configuration files in order to generate ossec.conf
Check 'ossec.conf' documentation to see all configuration sections.
Create a role following the 'wazuh_agent' role structure and specify your desired configuration attributes. Note that address is mandatory.
Assign the current role to desired nodes and run chef-client on them.
For example:
{
"name": "wazuh_agent",
"description": "Wazuh agent",
"json_class": "Chef::Role",
"default_attributes": {
},
"override_attributes": {
"ossec": {
"address": "172.19.0.211"
}
},
"chef_type": "role",
"run_list": [
"recipe[wazuh_agent::agent]"
],
"env_run_lists": {
}
}
Register agent by using agent enrollment. Also authd method is available but not enabled by default. You can declare the desired fields to customize the registration process.
It generates the ossec.conf file using Gyoku and restarts the wazuh-agent service
Declares repository of Wazuh and GPG keys based on different installations.
Check https://documentation.wazuh.com/current/user-manual/agents/index.html for more information about Wazuh-Agent.