Create admin user
447 views
Skip to first unread message
Gary Smithe
Oct 31, 2022, 6:32:52 PM10/31/22
to Wazuh mailing list
Apologies to all, but I've tried following the documentation and cannot create a proper admin user.
My install is on Ubuntu 22.04.1 LTS, no other software installed outside of base and Wazuh.
Wazuh was installed using
wazuh-install.sh -a
Here is how I'm trying to create a new user.
Documentation I've seen other than the above has screenshots different from what I see when I log in. I can provide those if people want (like I don't have Kibana, but I have OpenSearch, which is the new name for it).
When trying to save the mapping for "newadmin" I get the "forbidden" error shown in the lower right corner.
Any guidance would be appreciated.
Gary
Anthony Faruna
Oct 31, 2022, 6:56:41 PM10/31/22
to Gary Smithe, Wazuh mailing list
Hello Gary
Thank you for using Wazuh
Can you please let us know what version of Wazuh you are using?
Also to set Users & Roles please check this out: https://documentation.wazuh.com/current/user-manual/wazuh-dashboard/rbac.html
Please check this out also: https://documentation.wazuh.com/current/user-manual/elasticsearch/troubleshooting.html
Please let me know if this guide resolve your query
Best Regards
--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/0323fd2f-670d-4d66-8bb4-970a18b315e6n%40googlegroups.com.
Gary Smithe
Nov 1, 2022, 4:07:47 PM11/1/22
to wa...@googlegroups.com
Anthony,
I am following the guide you posted and am not having any luck.
I'm using wazuh 4.3.9
The troubleshooting guide and other screenshots I've seen don't match up to what I'm seeing. I'm hoping by posting screenshots you can see what I see and confirm I'm following the steps properly.
Upper left menu, select "Security"
Internal Users > Create internal user
Enter only username and password > Create
Security > Roles > all_access
While in all_users > Mapped Users > Manage Mapping
Add my user > Map
and that's when the error appears.
--
Regards,
Gary Smithe
Regards,
Gary Smithe
Anthony Faruna
Nov 2, 2022, 8:18:36 PM11/2/22
to Gary Smithe, wa...@googlegroups.com
Hello Gary
Apologies for the late reply, I had some access issues
I noticed you opened similar issue on Slack and my colleague provided response
Please confirm if the issue has been resolved
Best Regards
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/CAL%3DbX7RhQas-WjwR%3D_tYtz7QqADJ%3Dx3%2BXRtoCVJuGPTWjMLqcQ%40mail.gmail.com.
Gary Smithe
Nov 2, 2022, 8:50:27 PM11/2/22
to Anthony Faruna, wa...@googlegroups.com
Anthony,
No worries on the delay, but I don't use Slack (or know how), so I'm not sure how that issue was created, if it is the same one.
Still having the same problem. I installed 4.3.9 on both Ubuntu 22.04.1 and Centos 8 (latest updated version), and I get the same error message.
Gary
--
Regards,
Gary Smithe
Anthony Faruna
Nov 3, 2022, 9:23:39 AM11/3/22
to Gary Smithe, wa...@googlegroups.com
Hello Gary
What you can do to map your already generated user is to duplicate the all_access role and then map your user to that role. I share a screenshot of the tests carried out to serve as a guide.
On the other hand, these roles and users are at Opendistro level. However, if you want your user to have admin permissions in the Wazuh dashboard as well you have to add it to the Wazuh-UI administrator role.
For this you must access Wazuh app >> Security >> Roles mapping and create a new Role mapping for example opendistro_wazuh_admin. Set your new role name then select the Role administrator and map your previous generated user in the section Map internal users and finally save role mapping.
My mistake then, a user posted similar issue so I thought it was you
From the tests I was able to carry out, note that the all_access is a role reserved for the Security plugin environment. Reserved roles are restricted for any permission customizations.
What you can do to map your already generated user is to duplicate the all_access role and then map your user to that role. I share a screenshot of the tests carried out to serve as a guide.
On the other hand, these roles and users are at Opendistro level. However, if you want your user to have admin permissions in the Wazuh dashboard as well you have to add it to the Wazuh-UI administrator role.
For this you must access Wazuh app >> Security >> Roles mapping and create a new Role mapping for example opendistro_wazuh_admin. Set your new role name then select the Role administrator and map your previous generated user in the section Map internal users and finally save role mapping.
Note: To create a new user you must go to Security >> Internal users and select the Create internal user button.
Please let me know if this helps
Best Regards
Gary Smithe
Nov 4, 2022, 11:37:55 AM11/4/22
to Anthony Faruna, wa...@googlegroups.com
Anthony, no attachment came through, but I followed your directions in the text. duplicating the all_access role was key. Your above directions worked great. I'm not sure who updates the documentation on the Wazuh site, but the above should replace what is there now.
Thanks again!
Gary
Regards,
Gary Smithe
Anthony Faruna
Nov 4, 2022, 12:08:14 PM11/4/22
to Gary Smithe, wa...@googlegroups.com
Hello Gary
I am glad to know the issue has been resolved
I will take your recommendation to the appropriate team
Best Regards
Reply all
Reply to author
Forward
0 new messages