Wazuh agent auto upgrade

[Veera]

Hi,

Whenever the Wazuh Manager is upgraded, the agents are expected to be automatically upgraded to the same version. This is achieved by enabling remote commands using the wazuh_command.remote_commands configuration in the local_internal_options.conf file on each monitored endpoint.

However, a few agents failed to auto-update during the process.

Could you please confirm whether an internet connection is required for the Wazuh agent upgrade, when initated from the wazuh server(manager)? Also, could you explain(docs link) the underlying logic or mechanism used for the agent auto-update?

[Karlo Balmores Veranga]

Hi,

When an agent upgrade is initiated from the Wazuh Manager, the agent does not require direct internet access, as the manager handles distributing the upgrade packages. Internet access is only needed on the manager if it must download the packages beforehand.

The process depends on remote command execution, which must be enabled on each agent using wazuh_command.remote_commands. Upgrade failures are commonly caused by disabled remote commands, connectivity or firewall issues, permission limitations, or OS incompatibilities.

More details are available in the official documentation:
https://documentation.wazuh.com/current/user-manual/agents/remote-upgrading/index.html
https://documentation.wazuh.com/current/user-manual/reference/internal-options.html#wazuh-command-remote-commands