# Installing Wazuh Central Components Natively on Ubuntu Server

This guide provides a streamlined procedure for installing the Wazuh indexer, Wazuh server, and Wazuh dashboard on a single Ubuntu node. This native installation avoids the complexities of container networking and volume permissions.

---

## Prerequisites

- A fresh Ubuntu Server installation (Recommended: 22.04 or 24.04 LTS).
- Root or **sudo** privileges.
- Minimum Hardware: 8 vCPU, 16 GB RAM (Wazuh is resource-intensive).

---

## Step 1: System Preparation

Before starting the installation, ensure the OS is up to date and the identity of the server is established.

### 1. Set the Hostname

Identify the server clearly on your network (e.g., SecuServer).

```
sudo hostnamectl set-hostname SecuServer
```

### 2. Update System Packages

Ensure all base repositories and installed packages are current.

```
sudo apt update && sudo apt upgrade -y
```

### 3. Reboot

Apply any kernel updates or hostname changes.

```
sudo reboot
```

---

## Step 2: The Wazuh Installation

Wazuh provides an installation assistant that automates certificate generation and component linking. We use a version-specific URL to ensure the script downloads correctly.

### 1. Download and Run the Assistant

The **-a** flag performs an automated all-in-one installation.

```
curl -sO https://packages.wazuh.com/4.14/wazuh-install.sh && sudo bash ./wazuh-install.sh -a
```

### 2. Wait for Completion

The script will install the Indexer, Server, and Dashboard. This typically takes 5–15 minutes depending on hardware and network speed.

---

## Step 3: Securing Credentials

Once the installation finishes, the terminal will display a **Summary** block.

> **CRITICAL:** Copy the admin password immediately. It is randomly generated and required for the first login.

If you lose this password, you can retrieve it from the installation files by running:

```
sudo tar -O -xvf wazuh-install-files.tar wazuh-install-files/wazuh-passwords.txt
```

---

## Step 4: Accessing the Dashboard

Wazuh natively listens on port **443** and enforces **HTTPS**.

1. Open your browser and navigate to: **https://&lt;your\_server\_ip&gt;**
2. **Bypass SSL Warning:** Since the certificates are self-signed by the script, your browser will show a "Not Secure" warning. Click **Advanced** and then **Proceed**.
3. **Login:** Use the username **admin** and the password saved from Step 3.

---

### Troubleshooting Note: Port 80 vs. 443

If the page refuses to connect, ensure you are explicitly typing **https://** in the address bar. Wazuh does not listen on standard HTTP (Port 80) and will not automatically redirect you.