Channels
doorman
infrastructure
random
zercurity
community-feeds
fleet-dev
code-review
queryhub
apple-silicon
carving
tls
fim
goquery
zentral
aws
querycon
golang
zeek
file-carving
fuzzing
auditing-warroom
linen-dev
fleetosquery
plugins
jobs
arm-architecture
darkbytes
process-auditing
uptycs
android_tests
selfgroup
vendor-feeds
fleet
eclecticiq-polylogyx-extension
ebpf
website
core
general
macos
kolide
osctrl
extensions
foundation
sql
officehours
linux
windows
Title
j
Joe
08/04/2022, 4:42 PMHi everyone, i'm in the process of upgrading osquery from v4.8.0 to v5.4.0 and after upgrading to 5.4.0, i did a config check and i get the results below.
[user@server ~]$ osqueryctl config-check
W0804 09:25:28.146324 9466 options.cpp:106] The CLI only flag --config_plugin set via config file will be ignored, please use a flagfile or pass it to the process at startup
W0804 09:25:28.146414 9466 options.cpp:106] The CLI only flag --config_tls_endpoint set via config file will be ignored, please use a flagfile or pass it to the process at startup
W0804 09:25:28.146471 9466 options.cpp:106] The CLI only flag --enroll_secret_path set via config file will be ignored, please use a flagfile or pass it to the process at startup
W0804 09:25:28.146488 9466 options.cpp:106] The CLI only flag --enroll_tls_endpoint set via config file will be ignored, please use a flagfile or pass it to the process at startup
W0804 09:25:28.146525 9466 options.cpp:106] The CLI only flag --logger_plugin set via config file will be ignored, please use a flagfile or pass it to the process at startup
W0804 09:25:28.146555 9466 options.cpp:106] The CLI only flag --tls_hostname set via config file will be ignored, please use a flagfile or pass it to the process at startup
W0804 09:25:28.146572 9466 options.cpp:106] The CLI only flag --tls_server_certs set via config file will be ignored, please usea flagfile or pass it to the process at startup[user@server ~]$ osqueryd --verbose --flagfile /etc/osquery/osquery.flags
I0804 09:26:30.224347 9792 tls.cpp:255] TLS/HTTPS POST request to URI: https://*servername*/api/vi/osquery/enroll/
W0804 09:26:30.235630 9792 tls_enroll.cpp:101] Failed enrollment request to https://*servername*/api/vi/osquery/enroll/ (Cannot parse JSON: The document root must not be followed by other values. Offset: 4) retrying...z
zwass
08/04/2022, 4:50 PMIs that really a
/vi//v1/j
Joe
08/04/2022, 4:52 PMit is
/vi//v1/z
zwass
08/04/2022, 4:59 PMYes
j
Joe
08/04/2022, 5:00 PMAhhhh, i'll make a change and see if that works! Thanks for taking the time to look