Sold by: Manage StacksÂ
Deployed on AWS
AWS Free Tier
Production-ready Wazuh SIEM AMI with auto-setup, SSL/TLS, real-time threat detection, compliance monitoring, and centralized security event management.
Overview
This AMI deploys Wazuh SIEM using Docker Compose with automated configuration for a secure and seamless security monitoring setup. Designed for production environments, it includes: Automatic Wazuh stack deployment (Manager, Indexer, and Dashboard) using Docker Compose First-time guided configuration for custom domain, DNS validation, and SSL setup via Certbot Auto-generated strong admin credentials stored securely in .env and admin_password.txt Pre-configured Wazuh Security Dashboard for threat detection and compliance monitoring Persistent data volumes to ensure security event and log data durability Apache reverse proxy with WebSocket support for HTTPS-secured access Built-in failsafe installer that ensures setup completion successfully Real-time intrusion detection, file integrity monitoring, and vulnerability scanning Support for unlimited agent deployment across Windows, Linux, and macOS endpoints
Highlights
- Production-ready & Secure: SSL-enabled access with automated domain + certificate provisioning via Let's Encrypt
- Fully Automated Setup: Failsafe installer ensures Wazuh SIEM deployment always completes successfully
- Security Dashboard Included: Full management UI for monitoring threats, compliance, vulnerabilities & security events
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 24.04
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
If you are an AWS Free Tier customer with a free plan, you are eligible to subscribe to this offer. You can use free credits to cover the cost of eligible AWS infrastructure. See AWS Free Tier for more details. If you created an AWS account before July 15th, 2025, and qualify for the Legacy AWS Free Tier, Amazon EC2 charges for Micro instances are free for up to 750 hours per month. See Legacy AWS Free Tier for more details.
Dimension | Cost/hour |
|---|---|
t2.medium Recommended | $0.05 |
t3.micro | $0.05 |
c5a.4xlarge | $0.05 |
r6id.metal | $0.05 |
r5n.large | $0.05 |
r6idn.4xlarge | $0.05 |
i4i.16xlarge | $0.05 |
m5ad.large | $0.05 |
r5b.metal | $0.05 |
t3a.micro | $0.05 |
Vendor refund policy
For any questions or concerns, please contact: Perimattic.com Email: aws@perimattic.comÂ
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
- Added automated first-boot provisioning using failsafe.sh to ensure successful Wazuh SIEM installation.
- Implemented secure Wazuh setup with auto-generated strong admin credentials stored in .env and admin_password.txt
- Added mandatory domain validation and HTTPS configuration for secure remote dashboard access.
- Fully automated SSL certificate issuing and renewal using Certbot + Apache integration with WebSocket support.
- Enabled Wazuh Dashboard on port 15573 with secure Apache reverse proxy and security headers.
- Provided Docker Compose-based deployment for consistent Wazuh stack (Manager, Indexer, Dashboard) runtime.
- Configured persistent data volumes for security events, logs, configurations, and agent communications.
- Added auto-restart policy for all Wazuh containers to improve reliability and system uptime.
- Improved DNS validation logic to avoid SSL failures during domain mapping and certificate provisioning.
- Integrated self-healing setup that retries scripts on failure to guarantee successful provisioning and deployment.
Additional details
Usage instructions
- Launch an Instance
From AWS Marketplace, click Continue to Subscribe, then Continue to Configuration, and launch the AMI.
- Choose the Recommended Instance Type
Select t2.medium or higher for optimal Wazuh SIEM performance. Larger instance types improve indexing, dashboard responsiveness, and agent capacity.
- Configure Security Group
Allow inbound traffic on the following ports:
- 22 (SSH) - For secure terminal access
- 80 (HTTP) - Required temporarily for SSL validation
- 443 (HTTPS) - Secure access to Wazuh Dashboard
For monitoring external endpoints (agents):
- 1514-1515 (TCP) - Agent communication
Optional (can add later):
- 514 (UDP) - Syslog collection
- 55000 (TCP) - API access
- Connect to the Instance
Use SSH to connect: ssh -i <your-key.pem> ubuntu@<public-ip>
- First-Boot Setup (Guided)
On first login, an interactive guided setup will automatically start:
- Detects public IP
- Prompts for domain name
- Validates DNS A-record if domain provided
- Asks for admin email for SSL certificate
- Generates secure admin password (stored in /opt/app/admin_password.txt and /opt/app/.env)
- Configures Apache reverse proxy with SSL
- Deploys Wazuh stack using Docker Compose
- Displays access URL & credentials (~5-7 minutes)
- DNS Configuration
Before setup, add this DNS A-record if using custom domain:
yourdomain.com <your-instance-public-IP>
- Automatic SSL Setup
After DNS validation:
- Enables HTTPS access via Let's Encrypt certificate
- Redirects HTTP to HTTPS automatically
- Configures security headers
- Start / Restart Wazuh Manually (if needed)
cd /opt/app docker compose ps docker compose restart
Persistent volumes preserve security events, logs, and configurations across restarts.
- Access the Wazuh Dashboard
Open your browser and visit: https://<your-domain> (or) https://<public-ip>
Credentials are printed after setup and saved in:
/opt/app/admin_password.txt /opt/app/.env
Default user:
Username: admin Password: <auto-generated-password>
- Retrieve Credentials Anytime
cat /opt/app/admin_password.txt cat /opt/app/.env
Files contain: password, domain, email, and version information.
- Deploy Wazuh Agents
From Dashboard: Agents > Deploy new agent Select OS (Windows/Linux/macOS) and follow installation commands. Agents connect to ports 1514/1515.
- Troubleshooting
View logs: docker compose logs wazuh.dashboard
Check status: docker compose ps
Reset installation: sudo rm /var/log/wazuh-first-login-done bash /opt/app/failsafe.sh
Thank you for subscribing. Your instance is ready to go!
Need Support or Customization? Whether you're facing setup issues or need custom features, Perimattic's expert team is here to help:
Email us: aws@perimattic.com WhatsApp: +91-92142 66896 Learn more: <www.perimattic.com >
We offer: Free setup assistance Custom development & integrations Infrastructure consulting Automation & AI solutions With 13+ years of experience serving global clients, we ensure your deployment runs smoothly and scales with your needs.
Let's build something great together!
Support
Vendor support
For any assistance or inquiries, our dedicated support team is here to help 24/7. Feel free to reach out to us anytime. Email: aws@perimattic.com We are committed to providing timely and effective solutions to meet your needs.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
This product has charges associated with it for the provision and deployment of the application and AMI support. Deploy a preconfigured Wazuh Security Server with integrated threat detection, monitoring, and log management tools. This server provides a user-friendly dashboard, enabling efficient security operations for cloud environments.
Get EKS monitoring and automated cost optimization in one easy-to-use platform. We show you how much you spend on EKS, and then we reduce your cost by 50 to 75% automatically. With active smart and automated rightsizing and pricing arbitrage, your cluster is continuously efficient.
Production grade bitcoin node, fully synchronized with the bitcoin blockchain running the latest versions of Ubuntu and Bitcoin Core.
Deliver fast, fresh insights to your end-users with our easy-to-use analytics platform, built by the original authors of Apache Pinot.
Migrating to AWS isn't just a cost-saving move, it's a chance to modernize.
-Lower overhead cost by eliminating VMware licensing, hardware refresh cycles, and data center operating expenses
-Predict costs with per-VM and flexible billing plans
-Right-size resources with EC2 instances optimized for your workloads
-Scale instantly to match business needs
-Prepare for the future with managed services options like RDS, EKS, and Lambda
All backed by a proven migration roadmap delivered by Opti9's migration experts.
Pre-configured n8n Automation Platform on Ubuntu with PostgreSQL and Redis, auto domain setup, HTTPS via Let's Encrypt, and secure guided first-boot configuration.
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.