https://github.com/osquery/osquery logo
Title
j

Jeremiah F.

04/05/2023, 4:59 PM
Hello, I just got FleetDM installed on a local CentOS VM. I'm currently trying to add an Ubuntu-Desktop VM to my hosts in Fleet but am not seeing it show up in hosts after successfully installing the .deb file... Anyone happen to know what I might be doing wrong? (Screenshot of my CentOS VM w/ FleetDM's terminal)
k

Kathy Satterlee

04/05/2023, 5:13 PM
osquery can be really picky about certificates. If this is a dev environment, the simplest way to get around that is to use the
--insecure
flag when building your package. This allows Orbit to act as a proxy to bypass issues with self-signed certs. You can also pass the full certificate bundle when building the package with
--fleet-certificate <path/to/cert>
The host's Orbit logs may have some additional detail as well: https://fleetdm.com/docs/using-fleet/orbit#logs
j

Jeremiah F.

04/05/2023, 7:01 PM
Weird.... even after using both --insecure and giving it the absolute path to the cert. It's still unable to connect... I'm noticing that from the orbit side on the host I am trying to add, that it is getting "no route to host" as an error message and have also noticed I can't access the website GUI for it outside the VM.
k

Kathy Satterlee

04/05/2023, 7:28 PM
Are you able to ping the server from the command line on the host?
j

Jeremiah F.

04/05/2023, 7:41 PM
Yep, looks like firewall rules are allowing everything too 😢
z

zwass

04/05/2023, 9:21 PM
If you can't access the web UI then that's definitely going to be the issue. You'll have to figure out why the networking stack can't find a route.