Unable to install CEF collector on Linux machine using web proxy about azure-sentinel HOT 6 CLOSED

Per the Log Analytics agent documentation here and here, you set up a proxy by modifying the proxy.conf.

from azure-sentinel.

Thanks @oshezaf this is pointing me in the right direction. It looks like the python wrapper script written for Azure Sentinel does not have support yet for an http proxy. I'll see if I can modify the script and issue a pull request.

from azure-sentinel.

Created pull request #531

There were two parts to the issue. The first part is with the cef_installer.py script which is in the pull request. The second issue was with sudo not passing the https_proxy environment variable.

To fix the second issue you need to modify /etc/suoders or add the file /etc/sudoers.d/proxykeep to pass the environment variables for http proxy settings

Defaults env_keep += "http_proxy https_proxy no_proxy"

With sudo passing the https_proxy environment variable and the cef_installer.py script modified to detect and add the argument to the omsagent install script, the CEF collector can be installed fully with proxy settings and no post-modifications required.

from azure-sentinel.

Thanks for the contribution, we are taking a look and will address the issue

from azure-sentinel.

We were able to work around this problem by updating /etc/wgetrc to add the proxy variables http_proxy and https_proxy and enable it using use_proxy = on. We also added check_certificate = off to prevent issues with SSL. This ensures any instance of wget being called by scripts or nested scripts will always pickup the proxy configuration. Ref (link)

from azure-sentinel.

Closing as this has been work-arounded

from azure-sentinel.