Merge pull request #13745 from Security-Onion-Solutions/2.4/agfix

Move Airgap later in setup

setup/so-functions

@@ -48,11 +48,13 @@ airgap_rules() {
 
 	# Copy over the securityonion-resources repo
 	rsync -av  /root/SecurityOnion/agrules/securityonion-resources /nsm/
+}
 
-  	# Copy summaries over to SOC and checkout the correct branch
+airgap_detection_summaries() {
+	# Copy summaries over to SOC and checkout the correct branch
 	rsync -av --chown=socore:socore /nsm/securityonion-resources /opt/so/conf/soc/ai_summary_repos
 	git config --global --add safe.directory /opt/so/conf/soc/ai_summary_repos/securityonion-resources
-  	git -C /opt/so/conf/soc/ai_summary_repos/securityonion-resources checkout generated-summaries-published
+	git -C /opt/so/conf/soc/ai_summary_repos/securityonion-resources checkout generated-summaries-published
 }
 
 add_admin_user() {

setup/so-setup

@@ -763,6 +763,10 @@ if ! [[ -f $install_opt_file ]]; then
 				logCmd "salt-call state.apply suricata -l info"
 			fi
 		fi
+		if [[ $is_airgap ]]; then
+			title "Syncing AI-Generated Detection Summaries"
+			airgap_detection_summaries
+		fi
 		title "Setting up Kibana Default Space"
 		logCmd "so-kibana-space-defaults"
 		add_web_user