New deployment, Agents not enrolling

[Jonathan Daniels]

Hi Folks, 

I setup 3 servers in Azure, only the "Wazuh Server" has a public IP. 

The VM's in the cloud are able to enroll but machines outside the cloud I'm not winning. 

When I initially did the setup I did not have a public IP I added it later on not sure if that plays a role

[hasitha.u...@wazuh.com]

Hi Jonathan,

From the error Unable to connect to enrollment service at '[20.107.69.227]:1515', the agent is unable to connect to the port 1515. TCP port 1515 is the agent enrollment port used to register an agent to the Wazuh manager.

The firewall on either the Wazuh manager or the agent might be blocking port 1515. Ensure that the firewall is configured to allow traffic on this port.

As you are using the Cloud make sure that your traffic for port 1515 is blocking and also for agent connection you need the 1514 TCP port to be open to communicate.

Refer to this to have an idea that required ports to be open for communication.
https://documentation.wazuh.com/current/getting-started/architecture.html#required-ports

Additionally follow this troubleshooting guide, if you able to solve this issue from there.
https://documentation.wazuh.com/current/user-manual/agent/agent-enrollment/troubleshooting.html

Let me know if this helps.

Regards,
Hasitha Upekshitha