templates/wazuh_indexer_yml.erb

network.host: "<%= @indexer_network_host %>"
node.name: "<%= @indexer_node_name %>"
cluster.initial_master_nodes:
<% @indexer_cluster_initial_master_nodes.each do |node| -%>
- "<%= node %>"
<% end -%>
cluster.name: "<%= @indexer_cluster_name %>"
<% if not @indexer_discovery_hosts.empty? -%>
discovery.seed_hosts:
<% @indexer_discovery_hosts.each do |host| -%>
- "<%= host %>"
<% end -%>
<% end -%>
node.max_local_storage_nodes: "<%= @indexer_node_max_local_storage_nodes %>"
path.data: "<%= @indexer_path_data %>"
path.logs: "<%= @indexer_path_logs %>"
plugins.security.ssl.http.pemcert_filepath: <%= @indexer_path_certs %>/indexer-<%= @indexer_node_name %>.pem
plugins.security.ssl.http.pemkey_filepath: <%= @indexer_path_certs %>/indexer-<%= @indexer_node_name %>-key.pem
plugins.security.ssl.http.pemtrustedcas_filepath: <%= @indexer_path_certs %>/root-ca.pem
plugins.security.ssl.transport.pemcert_filepath: <%= @indexer_path_certs %>/indexer-<%= @indexer_node_name %>.pem
plugins.security.ssl.transport.pemkey_filepath: <%= @indexer_path_certs %>/indexer-<%= @indexer_node_name %>-key.pem
plugins.security.ssl.transport.pemtrustedcas_filepath: <%= @indexer_path_certs %>/root-ca.pem
plugins.security.ssl.http.enabled: true
plugins.security.ssl.transport.enforce_hostname_verification: false
plugins.security.ssl.transport.resolve_hostname: false
plugins.security.authcz.admin_dn:
- "CN=admin,OU=Wazuh,O=Wazuh,L=California,C=US"
plugins.security.check_snapshot_restore_write_privileges: true
plugins.security.enable_snapshot_restore_privilege: true
plugins.security.nodes_dn:
<% @indexer_cluster_CN.each do |cn| -%>
- "CN=indexer-<%= cn %>,OU=Wazuh,O=Wazuh,L=California,C=US"
<% end -%>
plugins.security.restapi.roles_enabled:
- "all_access"
- "security_rest_api_access"
plugins.security.allow_default_init_securityindex: true
cluster.routing.allocation.disk.threshold_enabled: false
compatibility.override_main_response_version: true