Add SCA configuration for Amazon-Linux-2

wazuh · Jun 24, 2019 · 823eeec · 823eeec
1 parent 01da56b
commit 823eeec
Showing 1 changed file with 15 additions and 2 deletions.
diff --git a/templates/fragments/_sca.erb b/templates/fragments/_sca.erb
@@ -1,5 +1,5 @@
 <%- if @kernel == 'Linux' -%>
-  <%- if @os_family == 'centos' -%>
+  <%- if @apply_template_os == 'centos' -%>
     <sca>
       <enabled>yes</enabled>
       <scan_on_start>yes</scan_on_start>
@@ -13,13 +13,26 @@
         <policy>system_audit_pw.yml</policy>
       </policies>
     </sca>
-  <%- else -%> 
+  <%- elsif @apply_template_os =='amazon' -%> 
     <sca>
       <enabled>yes</enabled>
       <scan_on_start>yes</scan_on_start>
       <interval>12h</interval>
       <skip_nfs>yes</skip_nfs>
 
+      <policies>
+      <policy>system_audit_rcl.yml</policy>
+      <policy>system_audit_ssh.yml</policy>
+      <policy>system_audit_pw.yml</policy>
+      </policies>
+    </sca>
+  <%- else -%>
+      <sca>
+      <enabled>yes</enabled>
+      <scan_on_start>yes</scan_on_start>
+      <interval>12h</interval>
+      <skip_nfs>yes</skip_nfs>
+
       <policies>
       <policy>cis_debian_linux_rcl.yml</policy>
       <policy>system_audit_rcl.yml</policy>