Merge remote-tracking branch 'remotes/origin/2.4/dev' into fleet-sa

2026-05-05 02:48:21 +02:00 · 2023-04-03 07:27:04 -04:00
parent e4b10aa28c a0bb6a700a
commit af392681e3
572 changed files with 7060 additions and 31492 deletions
@@ -8,7 +8,6 @@
 {% set PLAYBOOK = salt['pillar.get']('manager:playbook', '0') %}
 {% set ELASTALERT = salt['pillar.get']('elastalert:enabled', True) %}
 {% set ELASTICSEARCH = salt['pillar.get']('elasticsearch:enabled', True) %}
-{% set FILEBEAT = salt['pillar.get']('filebeat:enabled', True) %}
 {% set KIBANA = salt['pillar.get']('kibana:enabled', True) %}
 {% set LOGSTASH = salt['pillar.get']('logstash:enabled', True) %}
 {% set CURATOR = salt['pillar.get']('curator:enabled', True) %}
@@ -33,10 +32,9 @@
          'nginx',
          'telegraf',
          'influxdb',
-          'grafana',
          'soc',
          'kratos',
-          'elastic-fleet',
+          'elasticfleet',
          'firewall',
          'idstools',
          'suricata.manager',
@@ -82,7 +80,6 @@
          'ssl',
          'telegraf',
          'firewall',
-          'filebeat',
          'idh',
          'schedule',
          'docker_clean'
@@ -108,7 +105,7 @@
          'schedule',
          'tcpreplay',
          'docker_clean',
-          'elastic-fleet'
+          'elasticfleet'
          ],
      'so-manager': [
          'salt.master',
@@ -119,10 +116,9 @@
          'nginx',
          'telegraf',
          'influxdb',
-          'grafana',
          'soc',
          'kratos',
-          'elastic-fleet',
+          'elasticfleet',
          'firewall',
          'idstools',
          'suricata.manager',
@@ -139,10 +135,9 @@
          'nginx',
          'telegraf',
          'influxdb',
-          'grafana',
          'soc',
          'kratos',
-          'elastic-fleet',
+          'elasticfleet',
          'firewall',
          'manager',
          'idstools',
@@ -169,10 +164,9 @@
          'nginx',
          'telegraf',
          'influxdb',
-          'grafana',
          'soc',
          'kratos',
-          'elastic-fleet',
+          'elasticfleet',
          'firewall',
          'idstools',
          'suricata.manager',
@@ -193,7 +187,6 @@
          'pcap',
          'suricata',
          'healthcheck',
-          'filebeat',
          'schedule',
          'tcpreplay',
          'docker_clean'
@@ -219,10 +212,6 @@
          ],
  }, grain='role') %}

-  {% if FILEBEAT and grains.role in ['so-helixsensor', 'so-eval', 'so-manager', 'so-standalone', 'so-searchnode', 'so-managersearch', 'so-heavynode', 'so-import', 'so-receiver'] %}
-    {% do allowed_states.append('filebeat') %}
-  {% endif %}
-
  {% if (PLAYBOOK != 0) and grains.role in ['so-eval', 'so-manager', 'so-managersearch', 'so-standalone'] %}
    {% do allowed_states.append('mysql') %}
  {% endif %}
@@ -271,14 +260,7 @@
  {% if REDIS and grains.role in ['so-manager', 'so-standalone', 'so-managersearch', 'so-heavynode', 'so-receiver'] %}
    {% do allowed_states.append('redis') %}
  {% endif %}
-
-  {% if grains.os == 'CentOS' %}
-    {% if not ISAIRGAP %}
-      {% do allowed_states.append('yum') %}
-    {% endif %}
-    {% do allowed_states.append('yum.packages') %}
-  {% endif %}
-
+  
  {# all nodes on the right salt version can run the following states #}
  {% do allowed_states.append('common') %}
  {% do allowed_states.append('patch.os.schedule') %}