Giter VIP home page Giter VIP logo

ansible-role-winlogbeat's Introduction

WinLogBeat Install and Configure

An Ansible role that installs and configures WinLogBeat. The configuration supports 1-way SSL.

Prerequisites

Windows Configuration:

Get the latest version of ConfigureRemotingForAnsible.ps1 from https://github.com/ansible/ansible/blob/devel/examples/scripts/ConfigureRemotingForAnsible.ps1 Run this script as Administrator on Windows machines.

Follow instructions from : https://docs.ansible.com/ansible/2.5/user_guide/windows_winrm.html

Role Variables

Download and installation (Defaults):

winlogbeat_download_url_base: 'https://artifacts.elastic.co/downloads/beats/winlogbeat'
winlogbeat_download_file: 'winlogbeat-6.3.0-windows-x86_64'
file_ext: '.zip'  # file extension for winlogbeat_download file
winlogbeat_install_location: "C:/Program Files/Winlogbeat"

Example ( Default) Input:

winlogbeat_event_logs:
  - name: Application
  - name: Security
  - name: System

Tags and Fields can be added :

winlogbeat_tags:
   - service-X
   - web-tier


winlogbeat_fields:
   env: staging
   system: app

(Note, fields are sub items, not list) Fields can be set at the top-level or (by default) are under sub-directory:

winlogbeat_fields_under_root: false

Output Host options:

Output can be to Elasticsearch and/or Logstash:

winlogbeat_output_elasticsearch_hosts:
#  - "localhost:9200"

winlogbeat_output_logstash_hosts:
#  - "localhost:5000"

Adding hosts enables that output. No defaults provided. Therefore, one or both need to be configured.

SSL options (Defaults)

winlogbeat_ssl_certificate_authorities: #Collection
winlogbeat_ssl_verification_mode: # none, full
winlogbeat_ssl_renegotiation: #never, once, freely
winlogbeat_ssl_supported_protocols: #Collection: [SSLv3, TLSv1, TLSv1.0, TLSv1.1, TLSv1.2]
winlogbeat_ssl_cipher_suites: #Collection - See docs for available types
winlogbeat_ssl_curve_types: #Collection - [P-256, P-384, P521]
winlogbeat_ssl_enabled: # true, false

Logging options (Defaults)

winlogbeat_enable_logging: false
winlogbeat_log_level: warning
winlogbeat_log_dir: "{{ winlogbeat_install_location }}/{{ winlogbeat_download_file }}/logs"
winlogbeat_log_filename: mybeat.log

License

The MIT License (MIT)

Attribution

(c) Regents of the University of Colorado

ansible-role-winlogbeat's People

Contributors

jshure avatar

Watchers

 avatar  avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.