CentOS 7.x Install OSSEC agent on Windows
From Notes_Wiki
<yambe:breadcrumb self="Install OSSEC agent on Windows">CentOS_7.x_OSSEC|OSSEC</yambe:breadcrumb>
CentOS 7.x Install OSSEC agent on Windows
On OSSEC server, Generate Key for the agent
- Run below command on OSSEC server
- /var/ossec/bin/manage_agents
- Answer the following
- Choose your action: A,E,L,R or Q: A
- A name for the new agent: Windows-Client
- The IP Address of the new agent: 192.168.1.X
- An ID for the new agent[001]: 002
- Confirm adding it?(y/n): y
- (Generate key for Agent)
- Choose your action: A,E,L,R or Q: e
- Provide the ID of the agent to extract the key (or '\q' to quit): 001
- (Copy the key)
- Restart OSSEC server
- systemctl restart ossec
On Windows Agent
- Download windows agent from ossec website
- https://ossec.github.io/downloads.html
- Run the OSSEC installer, click next for basic information, after few screens
- Enter IP address of ossec server
- Paste key
- Restart ossec from manage option
Steps contributed by Pavan Ponamala
<yambe:breadcrumb self="Install OSSEC agent on Windows">CentOS_7.x_OSSEC|OSSEC</yambe:breadcrumb>