is there a procedure on integrating wazuh with ldap?
If you are running Wazuh with OpenDistro , you can follow this documentation page.
You will need a valid user with the necessary permissions to do the user search inside the LDAP users, and set those credentials inside /usr/share/Elasticsearch/plugins/opendistro_security/securityconfig/config.yml
Then, you will need to execute the securityadmin script so the new settings take place:
./securityadmin.sh -f ../securityconfig/config.yml -icl -nhnv -cert /etc/Elasticsearch/kirk.pem -cacert /etc/Elasticsearch/root-ca.pem -key /etc/Elasticsearch/kirk-key.pem -t config
Once that is done, you should be able to login into Kibana with your LDAP users and assign permissions to them.
Hope this helps.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.