CentOS 7.x Install OSSEC agent on Windows

From Notes_Wiki
Revision as of 16:21, 2 August 2017 by Saurabh (talk | contribs) (Created page with "<yambe:breadcrumb>CentOS_7.x_OSSEC|CentOS 7.x OSSEC</yambe:breadcrumb> =CentOS 7.x Install OSSEC agent on Windows= ==On OSSEC server, Generate Key for the agent== #Run below...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

<yambe:breadcrumb>CentOS_7.x_OSSEC|CentOS 7.x OSSEC</yambe:breadcrumb>

CentOS 7.x Install OSSEC agent on Windows

On OSSEC server, Generate Key for the agent

  1. Run below command on OSSEC server 
    /var/ossec/bin/manage_agents
    Answer the following 
    Choose your action: A,E,L,R or Q: A
    

    A name for the new agent: Windows-Client
    

    The IP Address of the new agent: 192.168.1.X
    

    An ID for the new agent[001]: 002
    

    Confirm adding it?(y/n): y
    

    (Generate key for Agent)
    

    Choose your action: A,E,L,R or Q: e
    

    Provide the ID of the agent to extract the key (or '\q' to quit): 001
    

    (Copy the key)
  2. Restart OSSEC server 
    systemctl restart ossec


On Windows Agent

  1. Download windows agent from ossec website 
    https://ossec.github.io/downloads.html
  2. Run the OSSEC installer, click next for basic information, after few screens 
    Enter IP address of ossec server
    

    Paste key
  3. Restart ossec from manage option


<yambe:breadcrumb>CentOS_7.x_OSSEC|CentOS 7.x OSSEC</yambe:breadcrumb>

Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php?title=CentOS_7.x_Install_OSSEC_agent_on_Windows&oldid=2784"