Closed gdiazlo closed 2 years ago
Vagrant file containg the description of the 4 machines using centos
Network configuration
🟡 Because I know Centos 8 comes with firewalls enabled by default in the vagrant box I am using, I have opted for disabling it, instead of implementing the adequate firewall policy for Wazuh. We should consider adding a note to the documentation talking about firewalls and wazuh.
🟡 When installing dependencies, if you copy & paste the whole block of commands it won't work appropriately, as the first command does not have a -y option. This makes the command ask for user input, so it does not execute the other pasted commands.
Execute the other commands manually:
🟡 Trying to compile Python from source, following the optional instructions does not work, as the package python34 does not exist in Centos 8 latest version. Following the documentation, I've changed to python3
as the package name. Does our code requires a specific version of python to work?
The documentation also say: _Nevertheless, you can download the CPython sources by adding the PYTHONSOURCE flag when running make deps.
But I was unable to find when to execute that command to add the PYTHON_SOURCE flag.
Downloading the package required an updated URL to use the pre-release
Building wazuh-manager using the provided script
🟡 The script will start the wazuh-manager service by default, but we do not include instructions to check if the service is running. I have modified the command to check if it was running and it was.
🟡 The documentation refereces other guide, but it is not clear what steps the user should follow. For example to install filebeat we need to also set up the wazuh repositories.
Filebeat installation
Following the documentation to install from sources.
🟡 When installing dependencies, if you copy & paste the whole block of commands won't work appropriately, as the first command does not have a -y option. This makes the command ask for user input, so it does not execute the other pasted commands.
In this case, the CMake installation is not optional.
Built from sources using the provided script. (output elided due to size)
Enrolling the agent manually, following the documentation.
🟡 Because the enrollment is separated into two stages, we might want to tell the user to save the key which was just obtained for the next step, right when the key is obtained, in addition to the general process.
Installation using the step-by-step guide.
I have modified the install commands to use the pre-release packages.
Configuring wazuh-dashboard
Only for distributed deployments
api_parameters
)🟡 Our documentation does not show the user how to check if the module is enabled, nor how to diagnose in case there is a problem.
General event view
GitHub module after enabling it on the UI settings
🟡 Our documentation does not mention that we need to enable GitHub module on the UI
Closing as all issues has been reported.
The following issue aims to run the specified test for the current release candidate, report the results, and open new issues for any encountered errors.
Test information
Test description
Deploy Wazuh with the following design:
Follow the documentation at:
https://documentation-dev.wazuh.com/current/github/index.html
Test different use cases of Github events and see that alerts are generated and make sense.
Test report procedure
Any failing test must be properly addressed with a new issue, detailing the error and the possible cause.
An extended report of the test results must be attached as a ZIP or TXT file. Please attach any documents, screenshots, or tables to the issue update with the results. This report can be used by the auditors to dig deeper into any possible failures and details.
Conclusions
All tests have been executed and the results can be found [here]().
git
value toall
inapi_parameter
in the default configuration shown in the documentationAuditors' validation
The definition of done for this one is the validation of the conclusions and the test results from all auditors.
All checks from below must be accepted in order to close this issue.