Getting started guide

Quickstart Wazuh

Unified XDR and SIEM platform

What is Wazuh?

Wazuh is an open source security platform that unifies XDR and SIEM. It provides endpoint protection, threat detection, vulnerability analysis and regulatory compliance.

The Wazuh agent installed on your machines collects security events and sends them to the manager for real-time analysis.

🛡️

Unified XDRExtended detection and response

🔍

Integrated SIEMLog analysis and alerts

📋

CompliancePCI-DSS, HIPAA, GDPR, etc.

🔒

VulnerabilitiesAutomatic vulnerability detection

1 How to access

After deploying your instance, you receive your credentials by email. You can also view them in your InstantApp dashboard.

From your instance details page, simply click the button to open the application directly:

Wazuh Dashboard

URL (with auto-generated subdomain) https://wazuh-123456.locordi.com

Administrator credentials admin / (password in dashboard)

⚠️ Warning

Change the admin password on first login. The default password is automatically generated during installation.

💡 Tip

Click on "Show credentials" in your instance details page to reveal the passwords.

2 Installing agents

To protect your machines, we provide pre-configured installation scripts that install the Wazuh agent with the correct connection settings.

✅ Simplified installation

Our downloadable scripts automatically install the Wazuh agent from official repos and configure it to connect to your manager.

From your instance details page, download the installation package for your operating system:

Wazuh Agent (Security)

Windows Linux macOS

Windows

In your InstantApp dashboard, click on your instance
Download the Windows package
Extract the contents of the ZIP file
Right-click on the file and select "Run as administrator": install-wazuh.cmd
The script downloads and installs the agent automatically
Done! The agent is installed and configured.

Linux

In your InstantApp dashboard, click on your instance
Download the Linux package
Run the script with root privileges

                chmod +x install-wazuh.sh

                sudo ./install-wazuh.sh

macOS

In your InstantApp dashboard, click on your instance
Download the macOS package
Run the script in Terminal as root

                chmod +x install-wazuh-mac.sh

                sudo ./install-wazuh-mac.sh

⚠️ Warning

Make sure ports 1514 and 1515 are open between your agents and the Wazuh manager.

Required ports

Port	Protocol	Description
`1514`	TCP	Agent-manager communication
`1515`	TCP	Agent enrollment
`55000`	TCP	Wazuh API

3 Verification in Dashboard

Log in to Wazuh Dashboard with your admin credentials
Go to Agents in the left menu
Your machines should appear with an Active status (green)
Click on an agent to see its details and security events

✅ Agent connected

If you see your agent with an Active status, the connection is established and monitoring is active!

Security modules

Wazuh offers several security modules you can explore:

Security Events - Security events and alerts
Integrity Monitoring - File integrity monitoring
Vulnerabilities - CVE vulnerability detection
Compliance - PCI-DSS, HIPAA, GDPR verification

4 Useful resources

Official website - wazuh.com Official documentation Agent Documentation

? Need help?

Our support team is available to help you set up your solution.

Contact support

Quickstart Wazuh

What is Wazuh?

1 How to access

⚠️ Warning

💡 Tip

2 Installing agents

✅ Simplified installation

Windows

Linux

macOS

⚠️ Warning

Required ports

3 Verification in Dashboard

✅ Agent connected

Security modules

4 Useful resources

? Need help?

Related blog articles

Wazuh : le guide complet du SIEM & XDR open source pour sécuriser votre entreprise