Accessing Wazuh Dashboard
Last updated
Last updated
To access Wazuh dashboard, you can use your web browser, and connect through your host using port 443. For instance, if you host it using IP address 10.10.0.110, you can access your browser by using URL https://10.10.0.110:443. A login page will be shown, and you can enter the credentials that you have from the administrator.
Once you are logged in, you will see the dashboard of the WAZUH application. You can see overview information of the agents that have been integrated with your server on the top of the dashboard. There are 4 main functionalities of the dashboard, consisting of:
Security Information Management: This feature focuses on collecting, analyzing, and storing security data from various sources like network devices, hosts, and intrusion detection systems. The aim is to provide a comprehensive view of the security posture of your network, detect anomalies, and facilitate incident investigation.
Auditing & Policy Monitoring: This aspect deals with continuously monitoring and reviewing activities within your network to ensure compliance with internal policies and standards. It involves tracking user activities, changes to configurations, file integrity monitoring, and making sure that the system adheres to established security policies.
Threat Detection & Response: This functionality is about identifying potential security threats and responding to them promptly. It includes real-time analysis of data to detect unusual patterns that may indicate a security incident, and it provides tools for rapid response to mitigate and resolve these threats.
Regulatory Compliance: This part of the dashboard helps in ensuring that your systems comply with relevant legal and regulatory requirements. It involves monitoring compliance with standards such as GDPR, HIPAA, PCI-DSS, etc., and providing reports and documentation needed for compliance audits.
