By default, the communications between the Wazuh Kibana App and the Wazuh API are not encrypted. You should take the following actions to secure the Wazuh API.
Change default credentials:
By default you can access by typing user “foo” and password “bar”. We recommend you to generate new credentials. This can be done very easily, with the following steps:# cd /var/ossec/api/configuration/auth # node htpasswd -c user myUserName
In order to enable HTTPS you need to generate or provide a certificate. You can learn how to generate your own certificate or generate it automatically using the script
Bind to localhost:
In case you do not need to access to the API externally, you should bind the API to
localhostusing the option
config.hostplaced in the configuration file