CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

add elasticsearch.auth state to statnalone node

Browse Source
This commit is contained in:
m0duspwnens
2021-05-25 13:46:18 -04:00
parent 747dc77c92
commit e261c197f3
3 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
salt/elasticsearch/auth.sls
View File

@@ -7,3 +7,6 @@ elastic_auth_pillar:
enabled: False enabled: False
user: so_elastic user: so_elastic
pass: {{ salt['random.get_str'](20) }} pass: {{ salt['random.get_str'](20) }}
# since we are generating a random password, and we don't want that to happen everytime
# a highstate runs, we only manage the file if it doesn't exist
- unless: ls /opt/so/saltstack/local/pillar/elasticsearch/auth.sls

3
salt/elasticsearch/init.sls
View File

@@ -260,9 +260,6 @@ elastic_curl_config:
file.managed: file.managed:
- name: /opt/so/conf/elasticsearch/curl.config - name: /opt/so/conf/elasticsearch/curl.config
- mode: 600 - mode: 600
# since we are generating a random password, and we don't want that to happen everytime
# a highstate runs, we only manage the file if it doesn't exist
- unless: ls /opt/so/conf/elasticsearch/curl.config
{% endif %} {# if grains['role'] != 'so-helix' #} {% endif %} {# if grains['role'] != 'so-helix' #}

1
salt/top.sls
View File

@@ -238,6 +238,7 @@ base:
{%- endif %} {%- endif %}
{%- if ELASTICSEARCH %} {%- if ELASTICSEARCH %}
- elasticsearch - elasticsearch
- elasticsearch.auth
{%- endif %} {%- endif %}
{%- if LOGSTASH %} {%- if LOGSTASH %}
- logstash - logstash