Does anyone know why I'd be getting this error wit...
# windowsa
Adam S
01/07/2022, 3:18 PMDoes anyone know why I'd be getting this error with osqueryi "W0107 101827.182194 1508 options.cpp:101] Cannot set unknown or invalid flag: utc" - installed via chocolatey and is version 5.2.0.
s
sharvil
01/07/2022, 3:29 PMutca
Adam S
01/07/2022, 3:33 PMthis was a brand new install, not settings have been changed.
s
Stefano Bonicatti
01/07/2022, 3:44 PMAh, it has been removed but we did not remove it from the
osquery.example.confosquery.confa
Adam S
01/07/2022, 4:27 PMso temporarily, i'll need to edit the osquery.conf file on the install?
s
sharvil
01/07/2022, 4:30 PMyep, just remove the
utca
Adam S
01/07/2022, 5:44 PMSeems like there may be a little more that needs to be updated in the default osquery.conf file for windows. Removing the line for utc is causing the conf to be invalid. "update failed to parse config" after removing the "utc" line.
s
sharvil
01/07/2022, 5:47 PMMake sure it’s valid json? The trailing comma from the line above might need to be removed too
👍 1
a
Adam S
01/07/2022, 6:50 PMah, yes that was it
4 Views