Create a database, setup the database user, and add the schema (located in the src/os_dbd directory of the distribution) with the following commands.
# mysql -u root -p
mysql> create database ossec;
mysql> grant INSERT,SELECT,UPDATE,CREATE,DELETE,EXECUTE on ossec.* to ossecuser@<ossec ip>;
Query OK, 0 rows affected (0.00 sec)
mysql> set password for ossecuser@<ossec ip>=PASSWORD('ossecpass');
Query OK, 0 rows affected (0.00 sec)
mysql> flush privileges;
Query OK, 0 rows affected (0.00 sec)
mysql> quit
# mysql -u root -p ossec < mysql.schema
In order for ossec to output alerts and other data into the database the /var/ossec/etc/ossec.conf will need to have a <database_output> section added.
<ossec_config>
<database_output>
<hostname>192.168.2.30</hostname>
<username>ossecuser</username>
<password>ossecpass</password>
<database>ossec</database>
<type>mysql</type>
</database_output>
</ossec_config>
The values will need to be corrected for your installations hostname, mysql user, password, and database.
All that is left is to enable the database daemon and restart ossec for the changes to take effect.
# /var/ossec/bin/ossec-control enable database
# /var/ossec/bin/ossec-control restart