Kibana

This is similar to the Elasticsearch role and is intended to deploy Kibana with the correct Wazuh APP version, you can customize the installation with the following:

• elasticsearch_network_host: defines Elasticsearch node ip address (default: 127.0.0.1).

• elasticsearch_http_port: defines Elasticsearch node port (default: 9200).

• kibana_server_host: defines Kibana listen address (default: 0.0.0.0).

• elastic_stack_version: defines Kibana version to be installed.

You can create a YAML file wazuh-kibana.yml to be used be Ansible playbook:

- hosts: kibana
  roles:
    - ansible-role-kibana

You can set your custom variable definitions for different environments, for example:

1. For production environment vars-production.yml:

elasticsearch_network_host: '10.1.1.10'

2. For development enviroment vars-development.yml:

elasticsearch_network_host: '192.168.0.10'

Next, run the Ansible playbook:

$ ansible-playbook wazuh-kibana.yml -e@vars-production.yml

The example above will install Kibana and configure to use 10.1.1.10 as Elasticsearch node.

Please review the references section to see all variables available for this role.