Welcome back. On Mon, Jun 17, 2013 at 3:33 PM, Michael Barrett <[email protected]> wrote: > Is there a way to setup ossec agents to failover to another server? > > We have a single management server (RH OSSEC 2.7) > > The server is virtual, in the event of a disaster we would like to migrate > the server over to our co-location facility. > > In my test I found that the agent could not talk to the server once it's IP > address had changed (we used the name in the config and changed DNS to point > to new location) > > I was able to get the agent to talk to the server once I generated a new key > and pushed it out to the agent. > > > Is there a way to set this up without having to re-issue keys to all my > agents? >
I believe the way to set it up is to add another server-ip entry to the agent, and copy the client.keys from the first server to the second. (restart agent processes and second server processes) > > > Thanks! > ____________________________________________ > Michael Barrett | Information Security Analyst - Lead | Mortgage Guaranty > Insurance Corporation > 270 E. Kilbourn Ave. | Milwaukee, WI 53202 USA | ( 1.414.347.6271 | 7 > 1.888.601.4440 | * [email protected] > > This message is intended for use only by the person(s) addressed above and > may contain privileged and confidential information. Disclosure or use of > this message by any other person is strictly prohibited. If this message is > received in error, please notify the sender immediately and delete this > message. > > -- > > --- > You received this message because you are subscribed to the Google Groups > "ossec-list" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > For more options, visit https://groups.google.com/groups/opt_out. > > -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
