Note
Since ThreatLockDown 4.0, by default, the agent registers automatically with the manager through enrollment. Configuration details can be found on Enrollment section.
agent-auth
The agent-auth program is the client application used along with wazuh-authd to automatically add agents to a ThreatLockDown manager.
Warning
By default there is no authentication or authorization involved in this transaction, so it is recommended that this daemon only be run when a new agent is being added.
-A <agent_name> |
Agent name to be used. |
|
Default value |
hostname |
|
-a |
Auto negotiate the most secure common SSL/TLS method with the client. |
|
Default value |
TLS v1.2 only (if supported by the server). |
|
-c <ciphers> |
SSL cipher list. The format of this parameter is described in SSL ciphers. |
|
Default value |
HIGH:!ADH:!EXP:!MD5:!RC4:!3DES:!CAMELLIA:@STRENGTH |
|
-D |
Directory where ThreatLockDown is installed. |
|
Default value |
/var/ossec |
|
-d |
Run in debug mode, can be repeated to increase the verbosity of messages. |
|
-g <group> |
Run as a group. |
|
-G <group> |
Assigns the agent to one or more existing groups (separated by commas). |
|
-i |
Let the agent IP address be set by the manager connection. |
|
-I |
Set the agent IP address |
|
-h |
Display the help message |
|
-k <path> |
Full path to the agent key. |
|
-m <manager_ip> |
IP address of the manager. |
|
-n <network_interface> |
Network interface to be used in an IPv6 connection (only necessary when using a link-local address). |
|
-P <password> |
Use the specified password instead of searching for it at If not provided in the file nor on the console, the client will connect to the server without a password (insecure mode). |
|
-p <port> |
Port wazuh-authd is running on. |
|
Default value |
1515 |
|
-t |
Test configuration. |
|
-V |
Display version and license information. |
|
-v <path> |
Full path to the CA certificate used to verify the server. |
|
-x <path> |
Full path to the agent certificate. |
|