-
Notifications
You must be signed in to change notification settings - Fork 186
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix wazuh-single installation bugs in AL2023 #1338
Fix wazuh-single installation bugs in AL2023 #1338
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I see that you tested the new development in AL2 but not in AL2023, am I wrong? If so, please it is necessary to test the development in both systems as they are affected.
I did it in AL2023 to test the new changes. I can do it for AL2 if it is needed |
Update reportAfter executing the TestsDeployroot@ip-172-31-35-66:/home/ubuntu/wazuh-ansible# sudo ansible-playbook playbooks/wazuh-single.yml
PLAY [aio] *******************************************************************************************************
TASK [Gathering Facts] *******************************************************************************************
[WARNING]: Platform linux on host 172.31.35.206 is using the discovered Python interpreter at /usr/bin/python3.7,
but future installation of another Python interpreter could change the meaning of that path. See
https://docs.ansible.com/ansible-core/2.16/reference_appendices/interpreter_discovery.html for more information.
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_vars] ***************************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_vars] ***************************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_vars] ***************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_vars] ***************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Check if certificates already exists] ***************************************
ok: [172.31.35.206 -> localhost]
TASK [../roles/wazuh/wazuh-indexer : Local action | Create local temporary directory for certificates generation] ***
changed: [172.31.35.206 -> localhost]
TASK [../roles/wazuh/wazuh-indexer : Local action | Check that the generation tool exists] ***********************
ok: [172.31.35.206 -> localhost]
TASK [../roles/wazuh/wazuh-indexer : Local action | Download certificates generation tool] ***********************
changed: [172.31.35.206 -> localhost]
TASK [../roles/wazuh/wazuh-indexer : Local action | Prepare the certificates generation template file] ***********
changed: [172.31.35.206 -> localhost]
TASK [../roles/wazuh/wazuh-indexer : Local action | Generate the node & admin certificates in local] *************
changed: [172.31.35.206 -> localhost]
TASK [../roles/wazuh/wazuh-indexer : RedHat/CentOS/Fedora | Add Wazuh indexer repo] ******************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Install Amazon extras in Amazon Linux 2] ************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Configure vm.max_map_count] *************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Update vm.max_map_count] ****************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : RedHat/CentOS/Fedora | Install Indexer dependencies] ************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Install Wazuh indexer] ******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Update cache] ***************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Install Wazuh indexer dependencies] *****************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Add apt repository signing key] *********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Import Wazuh repository GPG key] ********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Set permissions for Wazuh repository GPG key] *******************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Add Wazuh indexer repository] ***********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Install Wazuh indexer] ******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Remove performance analyzer plugin from Wazuh indexer] **********************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Remove Opensearch configuration file] ***************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Copy Opensearch Configuration File] *****************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_tasks] **************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Configure Wazuh indexer JVM memmory.] ***************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Ensure extra time for Wazuh indexer to start on reboots] ********************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Index files to remove] ******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Remove Index Files] *********************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Ensure Wazuh indexer started and enabled] ***********************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Wait for Wazuh indexer API] *************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Wait for Wazuh indexer API (Private IP)] ************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : RedHat/CentOS/Fedora | Remove Wazuh indexer repository (and clean up left-over metadata)] ***
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Reload systemd configuration] ***********************************************
skipping: [172.31.35.206]
PLAY [aio] *******************************************************************************************************
TASK [Gathering Facts] *******************************************************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_vars] ***************************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_vars] ***************************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_vars] ***************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_vars] ***************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Check if certificates already exists] ***************************************
ok: [172.31.35.206 -> localhost]
TASK [../roles/wazuh/wazuh-indexer : Local action | Create local temporary directory for certificates generation] ***
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Local action | Check that the generation tool exists] ***********************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Local action | Download certificates generation tool] ***********************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Local action | Prepare the certificates generation template file] ***********
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Local action | Generate the node & admin certificates in local] *************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : RedHat/CentOS/Fedora | Add Wazuh indexer repo] ******************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Install Amazon extras in Amazon Linux 2] ************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Configure vm.max_map_count] *************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Update vm.max_map_count] ****************************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : RedHat/CentOS/Fedora | Install Indexer dependencies] ************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Install Wazuh indexer] ******************************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Update cache] ***************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Install Wazuh indexer dependencies] *****************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Add apt repository signing key] *********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Import Wazuh repository GPG key] ********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Set permissions for Wazuh repository GPG key] *******************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Add Wazuh indexer repository] ***********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Install Wazuh indexer] ******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Remove performance analyzer plugin from Wazuh indexer] **********************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Remove Opensearch configuration file] ***************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Copy Opensearch Configuration File] *****************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : include_tasks] **************************************************************
included: /home/ubuntu/wazuh-ansible/roles/wazuh/wazuh-indexer/tasks/security_actions.yml for 172.31.35.206
TASK [../roles/wazuh/wazuh-indexer : Configure IP (Private address)] *********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Configure IP (Public address)] **********************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Ensure Indexer certificates directory permissions.] *************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Copy the node & admin certificates to Wazuh indexer cluster] ****************
changed: [172.31.35.206] => (item=root-ca.pem)
changed: [172.31.35.206] => (item=root-ca.key)
changed: [172.31.35.206] => (item=node-1-key.pem)
changed: [172.31.35.206] => (item=node-1.pem)
changed: [172.31.35.206] => (item=admin-key.pem)
changed: [172.31.35.206] => (item=admin.pem)
TASK [../roles/wazuh/wazuh-indexer : Restart Wazuh indexer with security configuration] **************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Copy the Opensearch security internal users template] ***********************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Hashing the custom admin password] ******************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Set the Admin user password] ************************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Hash the kibanaserver role/user pasword] ************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Set the kibanaserver user password] *****************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Initialize the Opensearch security index in Wazuh indexer] ******************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Create custom user] *********************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Configure Wazuh indexer JVM memmory.] ***************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Ensure extra time for Wazuh indexer to start on reboots] ********************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Index files to remove] ******************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Remove Index Files] *********************************************************
changed: [172.31.35.206] => (item={'path': '/var/lib/wazuh-indexer/performance_analyzer_enabled.conf', 'mode': '0640', 'isdir': False, 'ischr': False, 'isblk': False, 'isreg': True, 'isfifo': False, 'islnk': False, 'issock': False, 'uid': 995, 'gid': 993, 'size': 5, 'inode': 24201073, 'dev': 66305, 'nlink': 1, 'atime': 1718908248.0, 'mtime': 1718908248.0, 'ctime': 1720520834.0690002, 'gr_name': 'wazuh-indexer', 'pw_name': 'wazuh-indexer', 'wusr': True, 'rusr': True, 'xusr': False, 'wgrp': False, 'rgrp': True, 'xgrp': False, 'woth': False, 'roth': False, 'xoth': False, 'isuid': False, 'isgid': False})
changed: [172.31.35.206] => (item={'path': '/var/lib/wazuh-indexer/rca_enabled.conf', 'mode': '0640', 'isdir': False, 'ischr': False, 'isblk': False, 'isreg': True, 'isfifo': False, 'islnk': False, 'issock': False, 'uid': 995, 'gid': 993, 'size': 5, 'inode': 24201074, 'dev': 66305, 'nlink': 1, 'atime': 1718908248.0, 'mtime': 1718908248.0, 'ctime': 1720520834.0690002, 'gr_name': 'wazuh-indexer', 'pw_name': 'wazuh-indexer', 'wusr': True, 'rusr': True, 'xusr': False, 'wgrp': False, 'rgrp': True, 'xgrp': False, 'woth': False, 'roth': False, 'xoth': False, 'isuid': False, 'isgid': False})
TASK [../roles/wazuh/wazuh-indexer : Ensure Wazuh indexer started and enabled] ***********************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Wait for Wazuh indexer API] *************************************************
FAILED - RETRYING: [172.31.35.206]: Wait for Wazuh indexer API (24 retries left).
FAILED - RETRYING: [172.31.35.206]: Wait for Wazuh indexer API (23 retries left).
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Wait for Wazuh indexer API (Private IP)] ************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : RedHat/CentOS/Fedora | Remove Wazuh indexer repository (and clean up left-over metadata)] ***
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-indexer : Reload systemd configuration] ***********************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Install common dependencies] ****************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Install curl] *******************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Install curl minimal in AL2023] *************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : include_vars] *******************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : include_vars] *******************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : include_vars] *******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : include_vars] *******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Overlay wazuh_manager_config on top of defaults] ********************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : include_tasks] ******************************************************
included: /home/ubuntu/wazuh-ansible/roles/wazuh/ansible-wazuh-manager/tasks/RedHat.yml for 172.31.35.206
TASK [../roles/wazuh/ansible-wazuh-manager : RedHat/CentOS 5 | Install Wazuh repo] *******************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : RedHat/CentOS/Fedora | Install Wazuh repo] **************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : RedHat/CentOS/Fedora | Install openscap] ****************************
ok: [172.31.35.206] => (item=openscap-scanner)
TASK [../roles/wazuh/ansible-wazuh-manager : CentOS 6 | Install Software Collections (SCL) Repository] ***********
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : RedHat 6 | Enabling Red Hat Software Collections (RHSCL)] ***********
skipping: [172.31.35.206] => (item=rhui-REGION-rhel-server-rhscl)
skipping: [172.31.35.206] => (item=rhel-server-rhscl-6-rpms)
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : CentOS/RedHat 6 | Install Python 2.7] *******************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : RedHat/CentOS/Fedora | Install OpenJDK 1.8] *************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Set Distribution CIS filename for RHEL5/CentOS-5] *******************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Set Distribution CIS filename for RHEL6/CentOS-6] *******************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Set Distribution CIS filename for RHEL7/CentOS-7] *******************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Set Distribution CIS filename for RHEL7/CentOS-7 (Amazon)] **********
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : CentOS/RedHat/Amazon | Install wazuh-manager] ***********************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : include_tasks] ******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : CentOS/RedHat 6 | Enabling python2.7 and sqlite3] *******************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Install expect (EL5)] ***********************************************
skipping: [172.31.35.206] => (item=expect)
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : include_tasks] ******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Generate the wazuh-keystore (username)] *****************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Generate the wazuh-keystore (password)] *****************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Install expect] *****************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Generate SSL files for authd] ***************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Copy CA, SSL key and cert for authd] ********************************
skipping: [172.31.35.206] => (item=)
skipping: [172.31.35.206] => (item=sslmanager.cert)
skipping: [172.31.35.206] => (item=sslmanager.key)
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Verifying for old init authd service] *******************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Verifying for old systemd authd service] ****************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Ensure ossec-authd service is disabled] *****************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Removing old init authd services] ***********************************
skipping: [172.31.35.206] => (item=/etc/init.d/ossec-authd)
skipping: [172.31.35.206] => (item=/lib/systemd/system/ossec-authd.service)
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Installing the local_rules.xml (default local_rules.xml)] ***********
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Adding local rules files] *******************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Installing the local_decoder.xml] ***********************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Adding local decoders files] ****************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Configure the shared-agent.conf] ************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Installing the local_internal_options.conf] *************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Retrieving Agentless Credentials] ***********************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Retrieving authd Credentials] ***************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Check if syslog output is enabled] **********************************
skipping: [172.31.35.206] => (item={'server': None, 'port': None, 'format': None})
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Check if client-syslog is enabled] **********************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Enable client-syslog] ***********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Check if ossec-agentlessd is enabled] *******************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Enable ossec-agentlessd] ********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Checking alert log output settings] *********************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Configure ossec.conf] ***********************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Ossec-authd password] ***********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Copy create_user script] ********************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Create admin.json] **************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Execute create_user script] *****************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Delete create_user script] ******************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Agentless Hosts & Passwd] *******************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Encode the secret] **************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Ensure Wazuh Manager service is started and enabled.] ***************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Create agent groups] ************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : Run uninstall tasks] ************************************************
included: /home/ubuntu/wazuh-ansible/roles/wazuh/ansible-wazuh-manager/tasks/uninstall.yml for 172.31.35.206
TASK [../roles/wazuh/ansible-wazuh-manager : Debian/Ubuntu | Remove Wazuh repository.] ***************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-wazuh-manager : RedHat/CentOS/Fedora | Remove Wazuh repository (and clean up left-over metadata)] ***
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : include_vars] ********************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : include_vars] ********************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : include_vars] ********************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : include_tasks] *******************************************************
included: /home/ubuntu/wazuh-ansible/roles/wazuh/ansible-filebeat-oss/tasks/RedHat.yml for 172.31.35.206
TASK [../roles/wazuh/ansible-filebeat-oss : RedHat/CentOS/Fedora/Amazon Linux | Install Filebeats repo] **********
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : include_tasks] *******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Install Filebeat | Redhat] *******************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Install Filebeat | Debian] *******************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Checking if Filebeat Module folder file exists] **********************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Download Filebeat module package] ************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Unpack Filebeat module package] **************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Setting 0755 permission for Filebeat module folder] ******************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Checking if Filebeat Module package file exists] *********************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Delete Filebeat module package file] *********************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Copy Filebeat configuration.] ****************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Fetch latest Wazuh alerts template] **********************************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : include_tasks] *******************************************************
included: /home/ubuntu/wazuh-ansible/roles/wazuh/ansible-filebeat-oss/tasks/security_actions.yml for 172.31.35.206
TASK [../roles/wazuh/ansible-filebeat-oss : Ensure Filebeat SSL key pair directory exists.] **********************
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : Copy the certificates from local to the Manager instance] ************
changed: [172.31.35.206] => (item=node-1-key.pem)
changed: [172.31.35.206] => (item=node-1.pem)
changed: [172.31.35.206] => (item=root-ca.pem)
TASK [../roles/wazuh/ansible-filebeat-oss : Ensure Filebeat is started and enabled at boot.] *********************
changed: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : include_tasks] *******************************************************
included: /home/ubuntu/wazuh-ansible/roles/wazuh/ansible-filebeat-oss/tasks/RMRedHat.yml for 172.31.35.206
TASK [../roles/wazuh/ansible-filebeat-oss : RedHat/CentOS/Fedora | Remove Filebeat repository (and clean up left-over metadata)] ***
ok: [172.31.35.206]
TASK [../roles/wazuh/ansible-filebeat-oss : include_tasks] *******************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : include_vars] *************************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : include_vars] *************************************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : include_vars] *************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : include_vars] *************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : RedHat/CentOS/Fedora | Add Wazuh dashboard repo] **************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Install Wazuh dashboard] **************************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : include_vars] *************************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Download apt repository signing key] **************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Import Wazuh repository GPG key] ******************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Set permissions for Wazuh repository GPG key] *****************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Debian systems | Add Wazuh dashboard repo] ********************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Install Wazuh dashboard] **************************************************
skipping: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Remove Dashboard configuration file] **************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Ensure Dashboard certificates directory permissions.] *********************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Copy the certificates from local to the Wazuh dashboard instance] *********
changed: [172.31.35.206] => (item=root-ca.pem)
changed: [172.31.35.206] => (item=node-1-key.pem)
changed: [172.31.35.206] => (item=node-1.pem)
TASK [../roles/wazuh/wazuh-dashboard : Copy Configuration File] **************************************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Ensuring Wazuh dashboard directory owner] *********************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Wait for Wazuh-Indexer port] **********************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Select correct API protocol] **********************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Attempting to delete legacy Wazuh index if exists] ************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Create Wazuh Plugin config directory] *************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Configure Wazuh Dashboard Plugin] *****************************************
ok: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Configure opensearch.password in opensearch_dashboards.keystore] **********
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Ensure Wazuh dashboard started and enabled] *******************************
changed: [172.31.35.206]
TASK [../roles/wazuh/wazuh-dashboard : Remove Wazuh dashboard repository (and clean up left-over metadata)] ******
ok: [172.31.35.206]
RUNNING HANDLER [../roles/wazuh/wazuh-indexer : restart wazuh-indexer] *******************************************
changed: [172.31.35.206]
RUNNING HANDLER [../roles/wazuh/ansible-wazuh-manager : restart wazuh-manager] ***********************************
changed: [172.31.35.206]
RUNNING HANDLER [../roles/wazuh/ansible-filebeat-oss : restart filebeat] *****************************************
changed: [172.31.35.206]
RUNNING HANDLER [../roles/wazuh/wazuh-dashboard : restart wazuh-dashboard] ***************************************
changed: [172.31.35.206]
PLAY RECAP *******************************************************************************************************
172.31.35.206 : ok=107 changed=51 unreachable=0 failed=0 skipped=92 rescued=0 ignored=0 |
Description
When installing an AIO from the
wazuh-single
playbook, there was a problem installingamazon-linux-extras
in AL2023. For this, a new condition has been added so that it is only installed on AL2 and skips it for AL2023.In addition, it was also trying to install
curl
on AL2023 while AL2023 already hadcurl-minimal
installed, and getting an error when having a different version of curl already installed. For this, new tasks have been added for:These changes fix bugs encountered during the execution of
wazuh-single
on AL2023.Tests
Playbook execution
Deploy
Status validation
Manager status
Indexer status
Dashboard status
Filebeat output
Dashboard connection