You need to clarify, are these servers agents? If so then you need to look
into config-profile for the agent configuration. Define different profiles
in the manager's /var/ossec/etc/shared/agent.conf and specify the
appropriate profile for the agent it it's ossec.conf using config-profile.
Wait a minute, is this a new install, how did you get the key installed on
the client? If there's an automated way to do that please post in a reply.
On Tuesday, November 14, 2017 at 7:26:55 AM UTC-6, Julia Vitoria Cardoso
wrote:
>
> Hi, i have a test setup with a windows agent and a server
Although the context was AliewnVault this solution worked for me in an
internally-installed manager-client environment:
http://www.itinthedatacenter.com/wordpress/?p=369
On Tuesday, November 14, 2017 at 7:26:55 AM UTC-6, Julia Vitoria Cardoso
wrote:
>
> Hi, i have a test setup with a windows
The context is /var/log/syslog monitoring, I have one system which is
generating numerous messages which I don't want to receive alerts for. I
would prefer to avoid a rules-based approach because I'm just beginning to
understand OSSEC and others with less knowledge than i need to be able to
