mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2026-04-27 15:07:51 +02:00
Mike Reeves
17 lines
508 B
Django/Jinja
17 lines
508 B
Django/Jinja
{%- set ES = salt['grains.get']('master') -%}
|
|
{%- set ES_USER = salt['pillar.get']('elasticsearch:auth:users:so_elastic_user:user', '') %}
|
|
{%- set ES_PASS = salt['pillar.get']('elasticsearch:auth:users:so_elastic_user:pass', '') %}
|
|
output {
|
|
if [module] =~ "ossec" {
|
|
elasticsearch {
|
|
pipeline => "%{module}"
|
|
hosts => "{{ ES }}"
|
|
user => "{{ ES_USER }}"
|
|
password => "{{ ES_PASS }}"
|
|
index => "so-ossec"
|
|
ssl => true
|
|
ssl_certificate_verification => false
|
|
}
|
|
}
|
|
}
|