search

wazuh / wazuh-kubernetes

Wazuh - Wazuh Kubernetes
https://wazuh.com/
GNU General Public License v2.0
234 stars 146 forks source link

Auth `use_password` enabled in master but not in worker #730

Closed RamosFe closed 1 week ago

RamosFe commented 1 week ago

One of the community users found that the option use_password is enabled in the master.conf but it is disabled in the worker.conf.

https://github.com/wazuh/wazuh-kubernetes/blob/eedc893da191899d4bdeca021db1d0d0b967db2d/wazuh/wazuh_managers/wazuh_conf/master.conf#L303 https://github.com/wazuh/wazuh-kubernetes/blob/eedc893da191899d4bdeca021db1d0d0b967db2d/wazuh/wazuh_managers/wazuh_conf/worker.conf#L303

The documentation suggest the following:

Note In the case where the deployment architecture is using a multi-node cluster, ensure that password authorization is enabled on each manager node. This prevents unauthorized agent enrollment through an unsecured manager node.

We should enable use_password in the worker.conf to prevent unauthorized agent enrollment trouugh an unsecured manager node.

teddytpc1 commented 1 week ago

The PR will be created tomorrow.