Agentless monitoring with a password simply does not work. Can't get it working for linux or cisco boxes.
I am running CentOS 5.8 on a ESXi guest. Install went very smooth, rolling out agents also works perfectly. Here is my steps for setting up agentless config diffs on cisco router: 1. I enabled agentless with: /var/ossec/bin/ossec-control enable agentless 2. Added the host with: /var/ossec/agentless/register_host.sh add [email protected] SSHPASS ENABLEPASS 3. added the appropriate items to ossec.conf: <agentless> <type>ssh_pixconfig_diff</type> <frequency>120</frequency> <host>[email protected]</host> <state>periodic_diff</state></agentless> 4. restarted ossec server Once I realized this was not working, I started testing. No matter what I do it doesnt work: *sudo -u ossec ./agentless/ssh_generic_diff [email protected] spawn ssh [email protected] Password: ERROR: Timeout while connecting to host: [email protected] . ** * * * * * *sudo -u ossec ./agentless/ssh_pixconfig_diff [email protected] spawn ssh -c des [email protected] No valid ciphers for protocol version 2 given, using defaults. Password: ERROR: Timeout while connecting to host: [email protected] * * * *Please excuse the insane formatting here. Anyone have a recommendation?* * * *Thanks* *Lou*
