From 90247688731abbb7451df9d26c034b62ed160255 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C3=81lex=20Ruiz?= <alejandro.ruiz.becerra@wazuh.com>
Date: Tue, 20 Feb 2024 15:51:42 +0100
Subject: [PATCH] Add `wazuh.manager.name` to VD mappings (#158)

---
 .../event-generator/event_generator.py                     | 3 +++
 ecs/vulnerability-detector/fields/custom/wazuh.yml         | 7 ++++++-
 2 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/ecs/vulnerability-detector/event-generator/event_generator.py b/ecs/vulnerability-detector/event-generator/event_generator.py
index 7fc69fb5ea732..24ecf744b8272 100755
--- a/ecs/vulnerability-detector/event-generator/event_generator.py
+++ b/ecs/vulnerability-detector/event-generator/event_generator.py
@@ -173,6 +173,9 @@ def generate_random_wazuh():
         'cluster': {
             'name': f'wazuh-cluster-{random.randint(0,10)}',
             'node': f'wazuh-cluster-node-{random.randint(0,10)}'
+        },
+        'manager': {
+            'name': f'wazuh-manager-{random.randint(0,10)}'
         }
     }
     return wazuh
diff --git a/ecs/vulnerability-detector/fields/custom/wazuh.yml b/ecs/vulnerability-detector/fields/custom/wazuh.yml
index 4f8b0c6f21173..abba5563e2c12 100644
--- a/ecs/vulnerability-detector/fields/custom/wazuh.yml
+++ b/ecs/vulnerability-detector/fields/custom/wazuh.yml
@@ -13,4 +13,9 @@
       type: keyword
       level: custom
       description: >
-        Wazuh cluster node name.
\ No newline at end of file
+        Wazuh cluster node name.
+    - name: manager.name
+      type: keyword
+      level: custom
+      description: >
+        Wazuh manager name. Used by dashboards to filter results on single node deployments.
\ No newline at end of file