Hello there!
I'm coming here to ask about a situation that I saw in some topics but didn't find the answer: timeout when I try to do agentless monitoring. My step by step was as follows: I created a username and password on the FreeBSD target server, I used the command /var/ossec/agentless/register_host.sh add
us...@test.com test_password with the created_user@server_ip and the created_password, I checked with the /var/ossec/agentless/register_host.sh list command, I checked the /var/ossec/agentless/.passlist file and there was a record (the only one created), I edited the ossec.conf file:
<!--agentless-->
<agentless>
<type>ssh_integrity_check_bsd</type>
<frequency>3600</frequency>
<host>user@ip</host>
<state>periodic_diff</state>
<arguments>/file1 /file2</arguments>
</agentless>
and I restarted the manager. It returns timeout error.
After that, I decided to test manually using the command ./agentless/ssh_integrity_check_bsd user@ip /home, and it goes through all the main.exp validators, and still gives a timeout. To be more specific, it appears:
(user@ip) Password for user@dns_name: ERROR: Timeout while connecting to host: user@ip .
I've already tested accessing the user via ssh through the wazuh server, and it connects directly, so I'm really sure it's not a connection issue between the servers. Any ideas on how I can resolve this issue?
I thank you for your attention