Puppet Class: te_axon

Inherited by:
te_axon::config
te_axon::install
te_axon::service
Defined in:
manifests/init.pp

Summary

The te_axon class installs, configures, and manages the services of the Tripwire Axon Agent.

Overview

Main class. Contains all private classes.

@ api public

Examples:

Minimal configuration

class { 'te_axon':
  package_source => 'http://files.example.com/tripwire/Axon_Agent_x64.msi'
}

Bridge options

class { 'te_axon':
  package_source   => 'http://files.example.com/tripwire/Axon_Agent_x64.msi',
  bridge_host      => 'teconsole.example.com'
  registration_key => 'correct horse battery staple'
}

Linux Event Generator packages

class { 'te_axon':
  package_source            => 'http://files.example.com/tripwire/axon-agent-installer-linux-x64.rpm',
  package_rtm_source        => 'http://files.example.com/tripwire/tw-eg-service-x86_64.rpm',
  package_rtm_driver_name   => 'tw-eg-driver-rhel',
  package_rtm_driver_source => 'http://files.example.com/tripwire/tw-eg-driver-rhel-x86_64.rpm'
}

Custom tag sets

class { 'te_axon':
  ...
  tags => {
    'tagset_1' => 'tag1',
    'tagset_2' => ['tag2a', 'tag2b'],
  },
}

Parameters:

  • package_manage (Boolean)

    Whether to manage the Axon Agent package. Default: true

  • package_ensure (String)

    Whether to install the Axon Agent package. Default: installed

  • package_install_path (String)

    Path to install the Axon Agent package. Default: varies by operating system

  • package_source (String)

    The path to the Axon Agent installer. Required

  • package_name (String)

    The name of the Axon Agent package. Default: varies by operating system

  • package_provider (Optional[String])

    Which package provider to use to manage the Axon Agent package. Default: undef

  • package_rtm_manage (Boolean)

    Whether to manage the Event Generator service. Does not apply to Windows. Default: true

  • package_rtm_ensure (String)

    Whether to install the Event Generator service. Default: installed

  • package_rtm_name (String)

    The name of the Event Generator service package. Default: varies by operating system

  • package_rtm_source (Optional[String])

    The path to the Event Generator service package. Required if package_rtm_manage is true.

  • package_rtm_driver_name (String)

    The name of the Event Generator driver. Default: varies by operating system

  • package_rtm_driver_source (Optional[String])

    The path to the Event Generator driver package. Required if package_rtm_manage is true.

  • config_path (String)

    Path to write Axon Agent configuration files. Default: varies by operating system

  • dns_srvc_name (String)

    DNS service name to look up. Default: _tw-agw

  • dns_srvc_domain (Optional[String])

    A specific domain to use when looking up the DNS SRV record. Default: undef. The agent will use the domain of the IP addresses assigned to the host.

  • bridge_host (Optional[String])

    A specific agent bridge host to connect to. Default: undef

  • bridge_port (Integer[0, 65535])

    A specific agent bridge port to connect to. Default: 5670

  • registration_filename (String)

    File to write the registration pre-shared key. Default: registration_pre_shared_key.txt

  • registration_key (Optional[String])

    Registration pre-shared key. Should be the same as the one specified in the Axon Bridge bridge.properties file. Default: undef

  • proxy_hostname (Optional[String])

    Hostname for a SOCKS 5 proxy server to connect through. Default: undef

  • proxy_port (Optional[Integer[0, 65535]])

    Port for a SOCKS 5 proxy server to connect through. Default: undef

  • proxy_username (Optional[String])

    Username for a SOCKS 5 proxy server to connect through. Default: undef

  • proxy_password (Optional[String])

    Password for a SOCKS 5 proxy server to connect through. Default: undef

  • tls_version (Optional[Enum['TLSv1', 'TLSv1.1', 'TLSv1.2']])

    Use a specific TLS version when connecting. Default: undef

  • tls_cipher_suites (Optional[String])

    Use a specific set of TLS cipher suites when connecting. Valid values are FIPS-compatible OpenSSL cipher suites which utilize an RSA key. Default: undef

  • logger_level (Optional[String])

    Can be set to DEBUG to enable debug logging from the agent. Default: undef

  • spool_size (String)

    The maximum size of the agent spool. Default: 1g (1 gigabyte)

  • tags (Optional[Hash])

    Tags to automatically apply to the node when registered. Format is a Hash of tag set names to tag values, or an array of tag values. Optional.

  • service_enable (Boolean)

    Whether to enable the Axon Agent service to start at boot. Default: true

  • service_ensure (Enum['running', 'stopped'])

    Whether the Axon Agent service should be running. Default: running

  • service_manage (Boolean)

    Whether to manage the Axon Agent service. Default: true

  • service_name (String)

    The Axon Agent service name to manage. Default value: varies by operating system

  • service_provider (Optional[String])

    Which service provider to use for the Axon Agent service. Default: undef.

  • service_rtm_enable (Boolean)

    Whether to enable the Event Generator service to start at boot. Default: true

  • service_rtm_ensure (Enum['running', 'stopped'])

    Whether the Event Generator service should be running. Default: running

  • service_rtm_manage (Boolean)

    Whether to manage the Event Generator service. Should only be used if install_rtm is true. Default: true

  • service_rtm_name (String)

    The Event Generator service name to manage. Default: varies by operating system

  • service_rtm_provider (Optional[String])

    Which service provider to use for the Event Generator service. Default: undef.



80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
 
# File 'manifests/init.pp', line 80

class te_axon (
  Boolean $package_manage,
  String $package_ensure,
  String $package_install_path,
  String $package_source,
  String $package_name,
  Optional[String] $package_provider,
  Boolean $package_rtm_manage,
  String $package_rtm_ensure,
  String $package_rtm_name,
  Optional[String] $package_rtm_source,
  String $package_rtm_driver_name,
  Optional[String] $package_rtm_driver_source,
  String $config_path,
  String $dns_srvc_name,
  Optional[String] $dns_srvc_domain,
  Optional[String] $bridge_host,
  Integer[0, 65535] $bridge_port,
  String $registration_filename,
  Optional[String] $registration_key,
  Optional[String] $proxy_hostname,
  Optional[Integer[0, 65535]] $proxy_port,
  Optional[String] $proxy_username,
  Optional[String] $proxy_password,
  Optional[Enum['TLSv1', 'TLSv1.1', 'TLSv1.2']] $tls_version,
  Optional[String] $tls_cipher_suites,
  Optional[String] $logger_level,
  String $spool_size,
  Optional[Hash] $tags,
  Boolean $service_enable,
  Enum['running', 'stopped'] $service_ensure,
  Boolean $service_manage,
  String $service_name,
  Optional[String] $service_provider,
  Boolean $service_rtm_enable,
  Enum['running', 'stopped'] $service_rtm_ensure,
  Boolean $service_rtm_manage,
  String $service_rtm_name,
  Optional[String] $service_rtm_provider,
) {

  contain te_axon::install
  contain te_axon::config
  contain te_axon::service

  Class['::te_axon::install']
  -> Class['::te_axon::config']
  ~> Class['::te_axon::service']
}