I agree auto-registration a.k.a ossec-authd is the easiest way to get keys. I already provided a puppet manifest using it in a previous post. With this method, don't have to worry about scp/ftp/rsync keys between server and clients.
On Fri, Nov 30, 2012 at 5:25 AM, dan (ddp) <[email protected]> wrote: > On Fri, Nov 30, 2012 at 3:00 AM, rezgui mohamed <[email protected]> > wrote: > > but this is only to generate the on sever but i need the copy this key on > > the agent remotly > > > > Best regards > > Why not use ossec-authd? > > grep $IP_ADDRESS /var/ossec/etc/client.keys > /tmp/$IP_ADRESS && scp > /tmp/$IP_ADDRESS IP_ADDRESS:/var/ossec/etc/client.keys > > > It's incredibly simple, and doesn't cover a number of corner cases. > But if those worry you, try fixing it yourself. This isn't a "unix > 101" mailing list. >
