Guys is there a way i can get just vulnerable soft...
# fleet
Guys is there a way i can get just vulnerable software with the type/path of installation. So rn if i check softwares and then filter vulnerable softwares i see all but not the path. & If i check inside host & then vuln soft then i get the path/type
i need that type field with all vuln software. So is there a query i can do on all to fetch just vulnerable softwares
Hi, @Ojas! You can fetch the vulnerable software using the Rest API. The results will include the source. Hope that helps!
Hey @Ojas what version of Fleet are you currently running? The “Type” column appears on Software page in the latest version of Fleet (4.18.0).
i have to update to latest, thaks i’ll update and check. Also rest api docs are helpfull too thankyou
but my updated version is giving me err right now. Failed enrollment request to (Request error: certificate verify failed) retrying... any help on this?
What version were you updating from? Any errors in the Fleet server logs?
i am actually deploying whole new infra with terraform. My older is still working which is about an year old.
Thanks for the context about setting up new infrastructure! What would be helpful are the logs from the server showing what's happening when the host is trying to enroll. Sometimes they have more information than the local logs from Orbit on the host.
how do i see the logs of server? its deployed on aws fargate
@Kathy Satterlee anything on this?
Thanks for tagging me! I see what looks like probably the request sent with curl down at the bottom of the logs. Are any other enroll requests showing up at all?
nope no other requests. i tried redeploying from scratch but same certificate err
btw i am generating my agents using fleetctl
also if i use --insecure then it works
@Kathy Satterlee tagging you just incase you missed the message
So sorry @Ojas I have been out of the office. It's odd that what looks like the
request is getting logged in the server, but not the enrollment request. If you attempt enrolling again, do any POST requests show up in the service logs? Is there any chance that the certificate isn't where
is expecting it to be? That would be set with
when generating the certificate.