Is there a procedure on integrating wazuh with ldap?

nour.megahed · November 18, 2021, 6:50pm

is there a procedure on integrating wazuh with ldap?

danisan · November 26, 2021, 6:22pm

Hello Nour,

If you are running Wazuh with OpenDistro , you can follow this documentation page.

You will need a valid user with the necessary permissions to do the user search inside the LDAP users, and set those credentials inside /usr/share/elasticsearch/plugins/opendistro_security/securityconfig/config.yml

Then, you will need to execute the securityadmin script so the new settings take place:

cd /usr/share/elasticsearch/plugins/opendistro_security/tools
./securityadmin.sh -f ../securityconfig/config.yml -icl -nhnv -cert /etc/elasticsearch/kirk.pem -cacert /etc/elasticsearch/root-ca.pem -key /etc/elasticsearch/kirk-key.pem -t config

Reference: Apply Changes with securityadmin.sh - Open Distro Documentation

Once that is done, you should be able to login into Kibana with your LDAP users and assign permissions to them.
Hope this helps.

Topic		Replies	Views
All-in-one deployement of Wazuh Elasticsearch	2	816	March 28, 2021
ElasticCloud in AWS integration with OpenLdap Elasticsearch	2	737	October 17, 2017
How to access configurations pushed to opendistro security index Elasticsearch	1	618	April 27, 2020
LDAP integration with elk Elasticsearch	0	378	August 6, 2020
Integration with LDAP Kibana elastic-stack-security	6	359	February 9, 2021

Is there a procedure on integrating wazuh with ldap?

Related topics