CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 10:12:53 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix some files

Browse Source
This commit is contained in:
Mike Reeves
2023-05-02 12:41:49 -04:00
parent 7595072e85
commit 2419cf86ee
1 changed files with 37 additions and 33 deletions
Download Patch File Download Diff File Expand all files Collapse all files

70
salt/elasticsearch/init.sls
View File

@@ -21,6 +21,27 @@ vm.max_map_count:
sysctl.present: sysctl.present:
- value: 262144 - value: 262144
# Add ES Group
elasticsearchgroup:
group.present:
- name: elasticsearch
- gid: 930
esconfdir:
file.directory:
- name: /opt/so/conf/elasticsearch
- user: 930
- group: 939
- makedirs: True
# Add ES user
elasticsearch:
user.present:
- uid: 930
- gid: 930
- home: /opt/so/conf/elasticsearch
- createhome: False
{% if GLOBALS.is_manager %} {% if GLOBALS.is_manager %}
# We have to add the Manager CA to the CA list # We have to add the Manager CA to the CA list
cascriptsync: cascriptsync:
@@ -42,20 +63,26 @@ cascriptfun:
- file: cascriptsync - file: cascriptsync
{% endif %} {% endif %}
# Sync some es scripts elasticsearch_sbin:
es_sync_scripts:
file.recurse: file.recurse:
- name: /usr/sbin - name: /usr/sbin
- user: root - source: salt://elasticsearch/tools/sbin
- group: root - user: 930
- group: 939
- file_mode: 755
- exclude_pat:
- so-catrust
- so-elasticsearch-pipelines # exclude this because we need to watch it for changes, we sync it in another state
- so-elasticsearch-ilm-policy-load
elasticsearch_sbin_jinja:
file.recurse:
- name: /usr/sbin
- source: salt://elasticsearch/tools/sbin_jinja
- user: 939
- group: 939
- file_mode: 755 - file_mode: 755
- template: jinja - template: jinja
- source: salt://elasticsearch/tools/sbin
- exclude_pat:
- so-elasticsearch-pipelines # exclude this because we need to watch it for changes, we sync it in another state
- so-elasticsearch-ilm-policy-load
- defaults:
GLOBALS: {{ GLOBALS }}
so-elasticsearch-ilm-policy-load-script: so-elasticsearch-ilm-policy-load-script:
file.managed: file.managed:
@@ -96,29 +123,6 @@ capemz:
- user: 939 - user: 939
- group: 939 - group: 939
# Add ES Group
elasticsearchgroup:
group.present:
- name: elasticsearch
- gid: 930
# Add ES user
elasticsearch:
user.present:
- uid: 930
- gid: 930
- home: /opt/so/conf/elasticsearch
- createhome: False
esconfdir:
file.directory:
- name: /opt/so/conf/elasticsearch
- user: 930
- group: 939
- makedirs: True
esingestdir: esingestdir:
file.directory: file.directory:
- name: /opt/so/conf/elasticsearch/ingest - name: /opt/so/conf/elasticsearch/ingest