CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Filebeat Module - Rework Certs

Browse Source
This commit is contained in:
Mike Reeves
2018-07-16 12:10:22 -04:00
parent 973ae8a187
commit 0b956c9017
2 changed files with 24 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
salt/filebeat/init.sls
View File

@@ -30,15 +30,15 @@ filebeatconfsync:
- group: 0
- template: jinja
filebeatcrt:
file.managed:
- name: /opt/so/conf/filebeat/etc/pki/filebeat.crt
- source: salt://filebeat/files/filebeat.crt
#filebeatcrt:
# file.managed:
# - name: /opt/so/conf/filebeat/etc/pki/filebeat.crt
# - source: salt://filebeat/files/filebeat.crt
filebeatkey:
file.managed:
- name: /opt/so/conf/filebeat/etc/pki/filebeat.key
- source: salt://filebeat/files/filebeat.key
#filebeatkey:
# file.managed:
# - name: /opt/so/conf/filebeat/etc/pki/filebeat.key
# - source: salt://filebeat/files/filebeat.key
so-filebeat:

16
salt/ssl/init.sls
View File

@@ -62,3 +62,19 @@ fbcrtlink:
backup: True
{% endif %}
{% if grains['role'] == 'so-sensor' %}
# Request a cert and drop it where it needs to go to be distributed
/opt/so/conf/filebeat/etc/pki/filebeat.crt:
x509.certificate_managed:
- ca_server: {{ master }}
- signing_policy: filebeat
- public_key: /opt/so/conf/filebeat/etc/pki/filebeat.key
- CN: {{ master }}
- days_remaining: 3000
- backup: True
- managed_private_key:
name: /opt/so/conf/filebeat/etc/pki/filebeat.key
bits: 4096
backup: True
{% endif %}