improve dashboard and manager roles to address pending tasks automation#2763

2025-12-10 00:38:17 -06:00 · 2025-11-27 15:40:07 -05:00 · 2025-11-27 15:40:07 -05:00 · fe840b4a1d
commit fe840b4a1d
parent 1e824255fb
2 changed files with 7 additions and 31 deletions
--- a/roles/wazuh-dashboard/tasks/main.yml
+++ b/roles/wazuh-dashboard/tasks/main.yml
@ -52,12 +52,11 @@
            - https://{{ node }}:9200
          {% endfor %}

-    # - name: Dashboard-config | Configure Wazuh manager address in wazuh.yml
-    #   ansible.builtin.replace:
-    #     path: /usr/share/wazuh-dashboard/data/wazuh/config/wazuh.yml
-    #     regexp: 'url:\s+https://.*$'
-    #     replace: 'url: https://{{ wazuh_manager_master_address }}'
-    #   become: true
+    - name: Dashboard-config | Set Wazuh server host URL
+      ansible.builtin.replace:
+        path: /etc/wazuh-dashboard/opensearch_dashboards.yml
+        regexp: '^(\s*)url:\s*https://.*$'
+        replace: '\1url: https://{{ wazuh_manager_master_address }}'

 - name: Copy the certificates from local to the Wazuh dashboard instance
  ansible.builtin.copy:
--- a/roles/wazuh-manager/tasks/main.yml
+++ b/roles/wazuh-manager/tasks/main.yml
@ -106,31 +106,8 @@
        group: wazuh
        mode: '0400'
      with_items:
-        - { src: "{{ manager_node_name }}-key.pem", dest: "manager-1-key.pem" }
-        - { src: "{{ manager_node_name }}.pem", dest: "manager-1.pem" }
-
-    # TEMP: make sure destination directory exists
-    - name: Create Filebeat certificates directory
-      ansible.builtin.file:
-        path: /etc/filebeat/certs
-        state: directory
-        owner: root
-        group: root
-        mode: '0755'
-
-    # TEMP: to make filebeat work
-    - name: Copy certificates to Filebeat directory
-      ansible.builtin.copy:
-        src: "{{ item.src }}"
-        dest: "{{ item.dest }}"
-        remote_src: true
-        owner: root
-        group: root
-        mode: '0400'
-      with_items:
-        - { src: "/var/ossec/etc/certs/root-ca.pem", dest: "/etc/filebeat/certs/root-ca.pem" }
-        - { src: "/var/ossec/etc/certs/{{ manager_node_name }}.pem", dest: "/etc/filebeat/certs/filebeat.pem" }
-        - { src: "/var/ossec/etc/certs/{{ manager_node_name }}-key.pem", dest: "/etc/filebeat/certs/filebeat-key.pem" }
+        - { src: "{{ manager_node_name }}-key.pem", dest: "server-key.pem" }
+        - { src: "{{ manager_node_name }}.pem", dest: "server.pem" }

    - name: Generate the wazuh-keystore (username)
      ansible.builtin.shell: