Shawn Maddock
09/08/2022, 2:41 PMfleet serve --config /etc/fleet/fleet.yml
, I’m getting:
mysql="could not connect to db: Error 1045: Access denied for user 'fleet'@'localhost' (using password: NO), sleeping 0s"
If instead I specify the password with a CLI flag, it works fine. The config file is fairly simple:
apiVersion: v1
kind: config
spec:
mysql:
password: '<my password>'
server:
address: 0.0.0.0:443
cert: '/etc/letsencrypt/live/<my domain>/fullchain.pem'
key: '/etc/letsencrypt/live/<my domain>/privkey.pem'
Anyone know why fleet would seem to be ignoring my config file?Lucas Rodriguez
09/08/2022, 2:47 PMmysql:
password: '<my password>'
server:
address: 0.0.0.0:443
cert: '/etc/letsencrypt/live/<my domain>/fullchain.pem'
key: '/etc/letsencrypt/live/<my domain>/privkey.pem'
See https://fleetdm.com/docs/deploying/configuration#using-a-yaml-config-fileShawn Maddock
09/08/2022, 2:51 PMLucas Rodriguez
09/08/2022, 2:52 PMShawn Maddock
09/08/2022, 2:53 PMLucas Rodriguez
09/08/2022, 2:54 PMShawn Maddock
09/08/2022, 2:57 PMLucas Rodriguez
09/08/2022, 3:03 PMShawn Maddock
09/08/2022, 3:11 PMconfig
type settings be specified in the one passed by fleet --config
, or are there some that can only be set via fleetctl apply
?Lucas Rodriguez
09/08/2022, 3:30 PMfleetctl apply
, like queries, packs, osquery agent settings.
These settings are defined here: https://fleetdm.com/docs/using-fleet/configuration-filesfleet --config
ones are more operational settings (which cannot be changed by fleetctl apply
like MySQL connection settings, etc.)Shawn Maddock
09/08/2022, 3:49 PMvulnerabilities
and other places vulnerability_settings
… same with other section names. Are these interchangeable?fleet config_dump
but that only includes what I have in the --config
file, and fleetctl get config
which only includes what was set in the UI. It looks like vulnerability_settings
moved from the fleetctl
config to vulnerabilities
in the fleet
config, making it even more confusing.Kathy Satterlee
09/09/2022, 1:48 PMfleetctl get config --include-server-config
. I'm sorry about the weirdness in the docs, I'll dig in to that and make sure everything is up to date.Shawn Maddock
09/09/2022, 1:58 PMKathy Satterlee
09/09/2022, 4:15 PM