mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-06 09:12:45 +01:00
56 lines
966 B
Plaintext
56 lines
966 B
Plaintext
{%- set HOSTNAME = salt['grains.get']('host', '') %}
|
|
|
|
#vm.max_map_count:
|
|
# sysctl.present:
|
|
# - value: 262144
|
|
|
|
# Add ossec Group
|
|
ossecgroup:
|
|
group.present:
|
|
- name: ossec
|
|
- gid: 945
|
|
|
|
# Add ossecm user
|
|
ossecm:
|
|
user.present:
|
|
- uid: 943
|
|
- gid: 945
|
|
- home: /opt/so/wazuh
|
|
- createhome: False
|
|
|
|
# Add ossecr user
|
|
ossecr:
|
|
user.present:
|
|
- uid: 944
|
|
- gid: 945
|
|
- home: /opt/so/wazuh
|
|
- createhome: False
|
|
|
|
# Add ossec user
|
|
ossec:
|
|
user.present:
|
|
- uid: 945
|
|
- gid: 945
|
|
- home: /opt/so/wazuh
|
|
- createhome: False
|
|
|
|
# Add wazuh agent
|
|
wazuhpkgs:
|
|
pkg.installed:
|
|
- skip_suggestions: False
|
|
- pkgs:
|
|
- wazuh-agent
|
|
|
|
so-wazuh:
|
|
docker_container.running:
|
|
- image: soshybridhunter/so-wazuh:HH1.0.5
|
|
- hostname: {{HOSTNAME}}-wazuh-manager
|
|
- name: so-wazuh
|
|
- detach: True
|
|
- port_bindings:
|
|
- 0.0.0.0:1514:1514
|
|
- 0.0.0.0:55000:55000
|
|
- binds:
|
|
- /opt/so/wazuh/:/var/ossec/data/:rw
|
|
|