An Ansible role that deploys Elastic Agents to Windows, Debian, and Ubuntu systems.
- The role checks if the Elastic Agents have been downloaded to the Ludus host. If not, it will attempt to download the agents based on the
ludus_elastic_agent_version
variable. - Agent versions can be found here
- The role is designed to work with Windows, Debian, Ubuntu systems.
- This role compliments the ludus_elastic_container
Warning:
--force
flag is used during agent installation. This overwrites the current installation and does not prompt for confirmation.--insecure
flag is used during agent installation. This is to ignore the self-signed certs.
None.
Available variables are listed below, along with default values (see defaults/main.yml
):
# The ludus_elastic_container role will output this to the console if you're monitoring the logs.
# Also accessible via the kibana UI.
# Also accessible in /opt/{{ ludus_elastic_container_install_path }}/enrollment_token.txt
ludus_elastic_enrollment_token: ""
# the IP address of your elastic server and port (defaults to 8220)
# `ludus range status` will provide you with the IP address
ludus_elastic_fleet_server: ""
# A valid agent version to download and install
ludus_elastic_agent_version: ""
None.
- hosts: elastic-agent
roles:
- badsectorlabs.ludus_elastic_agent
role_vars:
ludus_elastic_enrollment_token: "<TOKEN>"
ludus_elastic_fleet_server: "https://<IP>:8220" #8220 by default
ludus_elastic_agent_version: "8.12.2"
ludus:
- vm_name: "{{ range_id }}-jumpbox01"
hostname: "{{ range_id }}-jumpbox01"
template: debian-12-x64-server-template
vlan: 20
ip_last_octet: 25
ram_gb: 4
cpus: 2
linux: true
testing:
snapshot: false
block_internet: false
roles:
- badsectorlabs.ludus_elastic_agent # role_vars are not required when using ludus
# Add the role to your ludus host
ludus ansible roles add badsectorlabs.ludus_elastic_agent
# Get your config into a file so you can assign to your VMs
ludus range config get > config.yml
# Edit config to add the role to the VMs you wish to make an elastic server
ludus range config set -f config.yml
# Deploy the range with the user-defined-roles ONLY :)
ludus range deploy -t user-defined-roles
GPLv3
This role was created by Bad Sector Labs, for Ludus. PRs are welcomed.