Allow the user to customize the certificates attributes in indexer se…

…curity plugin In indexer security plugin for the nodes_dn field. Remove the Wazuh OU, O, L, C default attributes when certificates are managed by the user. Instead, only use the CN with the node name.
wazuh · Aug 4, 2022 · 0cecd38 · 0cecd38
1 parent 5b10733
commit 0cecd38
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/templates/wazuh_indexer_yml.erb b/templates/wazuh_indexer_yml.erb
@@ -31,7 +31,11 @@ plugins.security.check_snapshot_restore_write_privileges: true
 plugins.security.enable_snapshot_restore_privilege: true
 plugins.security.nodes_dn:
 <% @indexer_cluster_initial_master_nodes.each do |node| -%>
+<% if @manage_certs -%>
 - "CN=<%= node %>,OU=Wazuh,O=Wazuh,L=California,C=US"
+<% else -%>
+- "CN=<%= node %>"
+<% end -%>
 <% end -%>
 plugins.security.restapi.roles_enabled:
 - "all_access"