Add another node to an existing cluster

[meganie]

This works very nice for an initial setup: https://documentation.wazuh.com/current/installation-guide/wazuh-indexer/installation-assistant.html

But how do I generate the certificates and add a later installed node to an existing cluster?

[Mateo Cervilla]

Hi Meganie,

I recommend you to take a look at this documentation: Installing the Wazuh indexer step by step

Here, the installation process is divided into three stages.

• Certificates creation
• Nodes installation
• Cluster initialization

If you still need help with this, please let me know.

Regards,

Mateo

[meganie]

So I have to replace the certificates for wazuh-indexer, filebeat and wazuh-dashboard on all nodes manually if I want to add another one?

[Mateo Cervilla]

Take a look at this section of the documentation:

• Certificates deployment

You should have a rootCA certificate that was generated along with the others during the Wazuh installation. It can be used when adding a new node to create its certificates. Just remember to use the same rootCA pem and key that it was used for the other nodes:

• bash wazuh-certs-tool.sh -A /path/to/root-ca.pem /path/to/root-ca.key

This is explained in more detail in the link I shared above. Basically, you would need to modify your config.yml to add the new nodes and then run this tool while using the rootCA that you already have. This way, you won’t need to re-generate and re-deploy all your certificates, just do it for the new nodes.

[meganie]

Perfect, that is what I was looking for. Thank you very much!

[Mateo Cervilla]

I'm glad it worked for you.

Kind regards!