![]() The default port to use if one is not specified in the commands `host` argument. SSH keys can be configured using the credential manager. The credentials to associate with the instance. Navigate to Settings > Integrations > Servers & Services.Ĭlick Add instance to create and configure a new integration instance. Further information can be found on that the following locations:Ĭonfigure Ansible Linux on Cortex XSOAR # This integration is powered by Ansible 2.9. The host parameter accepts a list of addresses, and will run the command in parallel as per the Concurrency Factor value. This integration supports execution of commands against multiple hosts concurrently. Use the Integration parameters Escalate Privileges, Privilege Escalation Method, Privilege Escalation User, Privileges Escalation Password to configure this. Unless you are remoting into the system as root (uid 0) you will need to escalate your privileges to a super user. This is done using existing privilege escalation tools, which you probably already use or have configured, like sudo, su, or doas. Different from the user that logged into the machine (remote user). Privilege Escalation #Īnsible can use existing privilege escalation systems to allow a user to execute tasks as another. Whilst un-privileged Linux user privileges can be used, a SuperUser account is recommended as most commands will require elevated permissions to execute. Username and SSH Key from the XSOAR credential manager.Username & Password credential from the XSOAR credential manager.Username & Password entered into the integration.This integration supports a number of methods of authenticating with the Linux Host: The connection will be initiated from the XSOAR engine/server specified in the instance settings. ![]() Network Requirements #īy default, TCP port 22 will be used to initiate a SSH connection to the Linux host. Refer to the individual command documentation for further information. Different commands will use different underlying Ansible modules, and may have their own unique package requirements. The Linux host(s) being managed requires Python >= 2.6. Create separate instances if multiple credentials are required. ![]() The commands from this integration will take the Linux host address(es) as an input, and use the saved credential associated to the instance to execute. This will associate a credential to be used to access hosts when commands are run. To use this integration, configure an instance of this integration. This integration functions without any agents or additional software installed on the hosts by utilising SSH combined with Python. The Ansible engine is self-contained and pre-configured as part of this pack onto your XSOAR server, all you need to do is provide credentials you are ready to use the feature rich commands. This integration enables the management of Linux hosts directly from XSOAR using Ansible modules. Supported Cortex XSOAR versions: 6.0.0 and later.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |