Wazuh Server
| Channel | Revision | Published | Runs on |
|---|---|---|---|
| 4.11/stable | 203 | 15 Oct 2025 | |
| 4.11/edge | 206 | 27 Oct 2025 |
juju deploy wazuh-server --channel 4.11/stable
Deploy Kubernetes operators easily with Juju, the Universal Operator Lifecycle Manager. Need a Kubernetes cluster? Install MicroK8s to create a full CNCF-certified Kubernetes system in under 60 seconds.
Platform:
-
agent-password | secret
The Juju secret ID corresponding to the password used by the agents to connect to Wazuh.
-
custom-config-repository | string
A repository URL where configurations are stored for Wazuh, rsyslog, or both. The URL has to be provided in the format git+ssh://username@repository@ref, where 'username' is mandatory and 'ref' is optional and may be either a branch name or tag name. Tags are encouraged for reproducibility and for efficiency. If a branch is provided, the charm will re-pull the configuration on most charm events, as it cannot guarantee that it has the latest commits otherwise. The charm checks for the paths var/ossec/, etc/rsyslog.conf, and etc/rsyslog.d/ within the configuration repository and patches those configuration files over the corresponding paths on the live system: /var/ossec, /etc/rsyslog.conf, and /etc/rsyslog.d/, respectively.
-
custom-config-ssh-key | secret
The Juju secret ID corresponding to the private key for SSH authentication to the git repository. The secret should contain a single key, "value", which maps to the actual SSH key. To create the secret, run the following command:
juju add-secret my-custom-config-ssh-key value=<ssh-key> && juju grant-secret my-custom-config-ssh-key wazuh-server, and use the secret ID output to configure this option. -
logs-ca-cert | string
The certification authority certificate used to sign client certificates that the server should accept logs from.