Note In the case where the deployment architecture is using a multi-node cluster, ensure that password authorization is enabled on each manager node. This prevents unauthorized agent enrollment through an unsecured manager node.
We should enable use_password in the worker.conf to prevent unauthorized agent enrollment trouugh an unsecured manager node.
One of the community users found that the option
use_password
is enabled in the master.conf but it is disabled in the worker.conf.https://github.com/wazuh/wazuh-kubernetes/blob/eedc893da191899d4bdeca021db1d0d0b967db2d/wazuh/wazuh_managers/wazuh_conf/master.conf#L303 https://github.com/wazuh/wazuh-kubernetes/blob/eedc893da191899d4bdeca021db1d0d0b967db2d/wazuh/wazuh_managers/wazuh_conf/worker.conf#L303
The documentation suggest the following:
We should enable
use_password
in theworker.conf
to prevent unauthorized agent enrollment trouugh an unsecured manager node.