Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Change cert-tool to use only one wazuh-certificates folder. #87

Merged
merged 2 commits into from
Sep 30, 2024
Merged

Change cert-tool to use only one wazuh-certificates folder. #87

merged 2 commits into from
Sep 30, 2024

Conversation

c-bordon
Copy link
Member

@c-bordon c-bordon commented Sep 30, 2024
edited
Loading

related: wazuh/wazuh-packages#2998
related: #78

Tests

root@ubuntu-jammy:~# bash wazuh-install.sh -a
30/09/2024 14:34:23 INFO: Starting Wazuh installation assistant. Wazuh version: 4.9.0
30/09/2024 14:34:23 INFO: Verbose logging redirected to /var/log/wazuh-install.log
30/09/2024 14:34:30 INFO: Verifying that your system meets the recommended minimum hardware requirements.
30/09/2024 14:34:30 INFO: Wazuh web interface port will be 443.
30/09/2024 14:34:37 INFO: Wazuh repository added.
30/09/2024 14:34:37 INFO: --- Configuration files ---
30/09/2024 14:34:37 INFO: Generating configuration files.
30/09/2024 14:34:38 INFO: Generating the root certificate.
30/09/2024 14:34:38 INFO: Generating Admin certificates.
30/09/2024 14:34:39 INFO: Generating Wazuh indexer certificates.
30/09/2024 14:34:39 INFO: Generating Filebeat certificates.
30/09/2024 14:34:39 INFO: Generating Wazuh dashboard certificates.
30/09/2024 14:34:39 INFO: Created wazuh-install-files.tar. It contains the Wazuh cluster key, certificates, and passwords necessary for installation.
30/09/2024 14:34:40 INFO: --- Wazuh indexer ---
30/09/2024 14:34:40 INFO: Starting Wazuh indexer installation.
30/09/2024 14:34:57 INFO: Wazuh indexer installation finished.
30/09/2024 14:34:57 INFO: Wazuh indexer post-install configuration finished.
30/09/2024 14:34:57 INFO: Starting service wazuh-indexer.
30/09/2024 14:35:06 INFO: wazuh-indexer service started.
30/09/2024 14:35:06 INFO: Initializing Wazuh indexer cluster security settings.
30/09/2024 14:35:09 INFO: Wazuh indexer cluster security configuration initialized.
30/09/2024 14:35:09 INFO: Wazuh indexer cluster initialized.
30/09/2024 14:35:09 INFO: --- Wazuh server ---
30/09/2024 14:35:09 INFO: Starting the Wazuh manager installation.
30/09/2024 14:35:56 INFO: Wazuh manager installation finished.
30/09/2024 14:35:56 INFO: Wazuh manager vulnerability detection configuration finished.
30/09/2024 14:35:56 INFO: Starting service wazuh-manager.
30/09/2024 14:36:12 INFO: wazuh-manager service started.
30/09/2024 14:36:12 INFO: Checking Wazuh API connection
30/09/2024 14:36:12 INFO: Wazuh API connection successful
30/09/2024 14:36:12 INFO: Starting Filebeat installation.
30/09/2024 14:36:36 INFO: Filebeat installation finished.
30/09/2024 14:36:41 INFO: Filebeat post-install configuration finished.
30/09/2024 14:36:41 INFO: Starting service filebeat.
30/09/2024 14:36:42 INFO: filebeat service started.
30/09/2024 14:36:42 INFO: Checking Filebeat connection
30/09/2024 14:36:42 INFO: Filebeat connection successful
30/09/2024 14:36:42 INFO: --- Wazuh dashboard ---
30/09/2024 14:36:42 INFO: Starting Wazuh dashboard installation.
30/09/2024 14:37:24 INFO: Wazuh dashboard installation finished.
30/09/2024 14:37:24 INFO: Wazuh dashboard post-install configuration finished.
30/09/2024 14:37:24 INFO: Starting service wazuh-dashboard.
30/09/2024 14:37:24 INFO: wazuh-dashboard service started.
30/09/2024 14:37:25 INFO: Updating the internal users.
30/09/2024 14:37:28 INFO: A backup of the internal users has been saved in the /etc/wazuh-indexer/internalusers-backup folder.
30/09/2024 14:37:35 INFO: The filebeat.yml file has been updated to use the Filebeat Keystore username and password.
30/09/2024 14:37:38 INFO: The new password for Filebeat is VU.R4PhIWhnVNClSfrDUf+8VWKg2jN+i
30/09/2024 14:38:07 INFO: The password for the wazuh user is MHAWA8muV8aELZrMsedSBprg17pxZwI?
30/09/2024 14:38:07 INFO: The password for the wazuh-wui user is Vj*dn+xBr06p4BwV5RHyAwsOHl9*zqMb
30/09/2024 14:38:07 INFO: Initializing Wazuh dashboard web application.
30/09/2024 14:38:07 INFO: Wazuh dashboard web application not yet initialized. Waiting...
30/09/2024 14:38:24 INFO: Wazuh dashboard web application not yet initialized. Waiting...
30/09/2024 14:38:39 INFO: Wazuh dashboard web application initialized.
30/09/2024 14:38:39 INFO: --- Summary ---
30/09/2024 14:38:39 INFO: You can access the web interface https://<wazuh-dashboard-ip>:443
    User: admin
    Password: VU.R4PhIWhnVNClSfrDUf+8VWKg2jN+i
30/09/2024 14:38:39 INFO: Installation finished.
root@ubuntu-jammy:~# bash wazuh-certs-tool.sh -ca
30/09/2024 14:40:05 INFO: Verbose logging redirected to /root/wazuh-certificates-tool.log
30/09/2024 14:40:05 INFO: Generating the root certificate.
30/09/2024 14:40:05 INFO: Authority certificates created.
root@ubuntu-jammy:~# bash wazuh-certs-tool.sh -wd wazuh-certificates/root-ca.pem wazuh-certificates/root-ca.key -v
30/09/2024 14:40:19 INFO: Verbose logging redirected to /root/wazuh-certificates-tool.log
30/09/2024 14:40:19 DEBUG: Reading configuration file.
30/09/2024 14:40:19 DEBUG: Checking if 127.0.0.1 is private.
30/09/2024 14:40:19 DEBUG: Checking if 127.0.0.1 is private.
30/09/2024 14:40:19 DEBUG: Checking if 127.0.0.1 is private.
30/09/2024 14:40:19 DEBUG: Checking if the root CA exists.
30/09/2024 14:40:19 INFO: Generating Wazuh dashboard certificates.
30/09/2024 14:40:19 DEBUG: Generating certificate configuration.
30/09/2024 14:40:19 DEBUG: Creating the Wazuh dashboard tmp key pair.
30/09/2024 14:40:20 DEBUG: Creating the Wazuh dashboard certificates.
30/09/2024 14:40:20 INFO: Wazuh dashboard certificates created.
30/09/2024 14:40:20 DEBUG: Cleaning certificate files.
30/09/2024 14:40:20 DEBUG: Wazuh-certificates directory exists. Copied files from '/tmp/wazuh-certificates' to '/root/wazuh-certificates' and removed '/tmp/wazuh-certificates'.
root@ubuntu-jammy:~# ls -la wazuh-certificates
total 24
drwxr--r-- 2 root root 4096 Sep 30 14:40 .
drwx------ 6 root root 4096 Sep 30 14:40 ..
-rwxr--r-- 1 root root 1704 Sep 30 14:40 root-ca.key
-rwxr--r-- 1 root root 1204 Sep 30 14:40 root-ca.pem
-rwxr--r-- 1 root root 1708 Sep 30 14:40 wazuh-dashboard-key.pem
-rwxr--r-- 1 root root 1289 Sep 30 14:40 wazuh-dashboard.pem

@c-bordon c-bordon self-assigned this Sep 30, 2024
@c-bordon c-bordon requested a review from a team September 30, 2024 14:42
@c-bordon c-bordon merged commit 7e860dc into main Sep 30, 2024
0 of 2 checks passed
@c-bordon c-bordon linked an issue Sep 30, 2024 that may be closed by this pull request
Migrate 5.0.0 PRs from wazuh-package to the new repository #78
Closed
11 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@davidcr01 davidcr01 davidcr01 approved these changes

Assignees

@c-bordon c-bordon

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Migrate 5.0.0 PRs from wazuh-package to the new repository
2 participants
@c-bordon @davidcr01