Wazuh | Mailing List

I have configured SAML and everything is working. Now I want to create an admin and read-only group

Dear The Wazuh indexer data has grown to around 68GB. Vulnerability Detection is enabled in our

Hello Chi Bùi Quỳnh The number of VMs to use depends on how you envision your architecture/

Hi Nazmur, Any updates? Let me know Best, John On Friday, January 2, 2026 at 2:21:02 PM UTC+4 john

everything look like this but still no vulnerability is showing <vulnerability-detection> <

This issue could be related to the operating system. While AlmaLinux is officially supported for the

Hello, I figured out the problem. On worker node wazuh-analysisd not running... Apparently, the agent

Hi Rahul, Your configuration appears to be correct, as outlined here: To check if log duplication is

Thanks, Himanshu. This helped a lot. As a follow-up to the above questions (sorry to piggyback on the

Hello! This issue appears to be related to an incompatibility between the version of glibc used in

Hi Henry, Apologies for the delayed response, Could you please share the sample logs from the zyxel

Hi Paul. Thanks for the information shared via DM. Based on your current configuration, the following

Hi DIWAHAR, Thanks for your patience. I have replicated the issue. The CDB list fails because of the

Hey Robby, Hi, I have recently setup the wazuh and normally in any siem there will be a tab of alerts

I do to implement the Cleartext Credential Exposure use case using Wazuh: Detect passwords stored in

Hello Brenno, First you need to identify where the login alerts are coming from so you can make

It is not possible to make the same report. But you can make a similar custom dashboard for Threat

Thanks for the details . No more assistance required. On Monday, January 5, 2026 at 3:16:34 PM UTC+5:

Dear Tatavolu, Your GET _cluster/settings output shows a persistent cluster block and may be the

Jose Cintron 11:25 AM (Hello Nazmur Thanks for the information and the pointers to the documentation

Hi, I have already gone through the decoder file you shared, and I provided the updated decoder file

When you answer this mail make sure to click on the "reply to all", this way all the users

George, I'm not 100% positive of the cause of the issue, but the json decoder is implemented in

Dear Bony V John, thank you very much. It works for me.Thank you very much. Il giorno lunedì 5

Hello, To help other community users benefit from the troubleshooting process, please reply to all in

Hi, Thank you for the confirmation. Based on what you've described, the migration looks

Hello Mefisto, The issue you are experiencing is due to character encoding problems when matching the

Hello Raju, Further to my earlier message, please update the Wazuh Indexer username and password in

Hi Sumit The rebranding requests involve additional technical considerations that are important to

Hello Junior, I am glad the decoders and rule worked for you. In response to your second question,