Check to see if Playbook is enabled

salt/manager/tools/sbin/soup

@@ -589,6 +589,8 @@ up_to_2.4.70() {
   crontab -l | grep -v 'so-playbook-sync_cron' | crontab -
   crontab -l | grep -v 'so-playbook-ruleupdate_cron' | crontab -
 
+  if grep -A 1 'playbook:'  /opt/so/saltstack/local/pillar/minions/* | grep -q 'enabled: True'; then
+  
     # Check for active Elastalert rules
     active_rules_count=$(find /opt/so/rules/elastalert/playbook/ -type f -name "*.yaml" | wc -l)
 
@@ -620,7 +622,7 @@ up_to_2.4.70() {
 
     echo
     echo "Exporting Sigma rules from Playbook..."
-  MYSQLPW=$(lookup_pillar_secret mysql)
+    MYSQLPW=$(awk '/mysql:/ {print $2}' /opt/so/saltstack/local/pillar/secrets.sls)
 
     docker exec so-mysql sh -c "exec mysql -uroot -p${MYSQLPW} -D playbook -sN -e \"SELECT id, value FROM custom_values WHERE value LIKE '%View Sigma%'\"" | while read -r id value; do
         echo -e "$value" > "/nsm/backup/detections-migration/sigma/rules/$id.yaml"
@@ -634,6 +636,7 @@ up_to_2.4.70() {
     echo "Backing up Playbook database..."
     docker exec so-mysql sh -c "mysqldump -uroot -p${MYSQLPW} --databases playbook > /tmp/playbook-dump"
     docker cp so-mysql:/tmp/playbook-dump /nsm/backup/detections-migration/sigma/playbook-dump.sql
+  fi
 
   echo
   echo "Stopping Playbook services..."