Offline installation
You can install Wazuh even when there is no connection to the Internet. Installing the solution offline involves downloading the Wazuh central components to later install them on a system with no Internet connection. The Wazuh server, the Wazuh indexer, and the Wazuh dashboard can be installed and configured on the same host in an all-in-one deployment, or each component can be installed on a separate host as a distributed deployment, depending on your environment needs.
For more information about the hardware requirements and the recommended operating systems, check the Requirements section.
Note
You need root user privileges to run all the commands described below.
Prerequisites
curl
,tar
, andsetcap
need to be installed in the target system where the offline installation will be carried out.gnupg
might need to be installed as well for some Debian-based systems.In some systems, the command
cp
is an alias forcp -i
— you can check this by runningalias cp
. If this is your case, useunalias cp
to avoid being asked for confirmation to overwrite files.
Download the packages and configuration files
Run the following commands from any Linux system with Internet connection. This action executes a script that downloads all required files for the offline installation on x86_64 architectures. Select the package format to download.
# curl -sO https://packages.wazuh.com/4.9/wazuh-install.sh # chmod 744 wazuh-install.sh # ./wazuh-install.sh -dw rpm
# curl -sO https://packages.wazuh.com/4.9/wazuh-install.sh # chmod 744 wazuh-install.sh # ./wazuh-install.sh -dw deb
Download the certificates configuration file.
# curl -sO https://packages.wazuh.com/4.9/config.yml
Edit
config.yml
to prepare the certificates creation.If you are performing an all-in-one deployment, replace
"<indexer-node-ip>"
,"<wazuh-manager-ip>"
, and"<dashboard-node-ip>"
with127.0.0.1
.If you are performing a distributed deployment, replace the node names and IP values with the corresponding names and IP addresses. You need to do this for all the Wazuh server, the Wazuh indexer, and the Wazuh dashboard nodes. Add as many node fields as needed.
Run the
./wazuh-install.sh -g
to create the certificates. For a multi-node cluster, these certificates need to be later deployed to all Wazuh instances in your cluster.# ./wazuh-install.sh -g
Copy or move the following files to a directory on the host(s) from where the offline installation will be carried out. You can use
scp
for this.wazuh-install.sh
wazuh-offline.tar.gz
wazuh-install-files.tar
Next steps
Once the Wazuh files are ready and copied to the specified hosts, it is necessary to install the Wazuh components.