CentOS 7.x Install OSSEC agent on Windows

From Notes_Wiki
Revision as of 11:18, 27 January 2019 by Saurabh (talk | contribs)

<yambe:breadcrumb self="Install OSSEC agent on Windows">CentOS_7.x_OSSEC|OSSEC</yambe:breadcrumb>

CentOS 7.x Install OSSEC agent on Windows

On OSSEC server, Generate Key for the agent

  1. Run below command on OSSEC server
    /var/ossec/bin/manage_agents
    Answer the following
    Choose your action: A,E,L,R or Q: A
    A name for the new agent: Windows-Client
    The IP Address of the new agent: 192.168.1.X
    An ID for the new agent[001]: 002
    Confirm adding it?(y/n): y
    (Generate key for Agent)
    Choose your action: A,E,L,R or Q: e
    Provide the ID of the agent to extract the key (or '\q' to quit): 001
    (Copy the key)
  2. Restart OSSEC server
    systemctl restart ossec


On Windows Agent

  1. Download windows agent from ossec website
    https://ossec.github.io/downloads.html
  2. Run the OSSEC installer, click next for basic information, after few screens
    Enter IP address of ossec server
    Paste key
  3. Restart ossec from manage option


Steps contributed by Pavan Ponamala


<yambe:breadcrumb self="Install OSSEC agent on Windows">CentOS_7.x_OSSEC|OSSEC</yambe:breadcrumb>