wazuh + doc

2025-02-02 11:33:01 +01:00
parent 9fe6b402c6
commit 09ec8a80bd
5 changed files with 56 additions and 21 deletions
--- a/wazuh/provision/setup-wazuh-cli.yml
+++ b/wazuh/provision/setup-wazuh-cli.yml
@@ -0,0 +1,25 @@
+---
+- hosts: all
+  become: true
+  tasks:
+  - name: Recup clefs depot  
+    ansible.builtin.shell: curl -s https://packages.wazuh.com/key/GPG-KEY-WAZUH | gpg --no-default-keyring --keyring gnupg-ring:/usr/share/keyrings/wazuh.gpg --import && chmod 644 /usr/share/keyrings/wazuh.gpg
+
+  - name: Ajoute depot   
+    ansible.builtin.shell: echo "deb [signed-by=/usr/share/keyrings/wazuh.gpg] https://packages.wazuh.com/4.x/apt/ stable main" | tee -a /etc/apt/sources.list.d/wazuh.list
+  
+  - name: Update apt
+    ansible.builtin.apt:
+      update_cache: yes
+
+  - name: Installation wazuh-agent et liaison wazuh-server
+    ansible.builtin.shell: "WAZUH_MANAGER={{ srv_ip }} apt-get install wazuh-agent"
+
+  - name: Relance wazuh-agent
+    ansible.builtin.systemd:
+      name: wazuh-agent
+      state: restarted
+      enabled: true
+      daemon_reload: true
+  
+
--- a/wazuh/provision/setup-wazuh.yml
+++ b/wazuh/provision/setup-wazuh.yml
@@ -0,0 +1,14 @@
+---
+- hosts: all
+  become: true
+  tasks:
+  - name: Arrete service unattended-upgrades 
+    ansible.builtin.service: 
+      name: unattended-upgrades
+      state: stopped
+
+  - name: Recup script install et lance wazuh-installl.sh en mode AIO - 15 min
+    ansible.builtin.shell: 
+      cmd: curl -s -O https://packages.wazuh.com/4.10/wazuh-install.sh && bash wazuh-install.sh -a
+
+