Does anyone have experience setting up Fleet SMTP ...
# fleetb
Billy H
12/19/2024, 8:27 PMDoes anyone have experience setting up Fleet SMTP with a Google Workspace email that has 2FA enabled?
I've followed all the Fleet provided and Google provided documentation and I just can't seem to find any combination of it that works. Currently have it all loaded up with an app password but still no dice
r
Rebecca Cowart
12/19/2024, 8:46 PM@Billy H I'm looking into this for you and will return with more info. 🙂
Rebecca Cowart
12/19/2024, 9:46 PM@Billy H Are you getting any errors during the setup process?
b
Billy H
12/19/2024, 9:51 PMjust a generic error:
Could not connect to SMTP server. Please try again.Billy H
01/02/2025, 2:36 PMHey @Rebecca Cowart! just checking in on this, any help would be appreciated!
r
Rebecca Cowart
01/02/2025, 7:20 PM@Billy H The Fleet logs may have more detailed information on why the setup failed. If there's nothing there, your mail admin may also have relevant information.
b
Billy H
01/02/2025, 7:22 PMWell I am the mail admin! So that may be a problem hahaha
Billy H
01/02/2025, 7:22 PMi'll check the fleet logs though
Billy H
01/07/2025, 5:49 PM@Rebecca Cowart how do I check the Fleet logs? Been searching around with not much luck. I enabled the server logging here: https://fleetdm.com/docs/configuration/fleet-server-configuration#logging-fleet-server-logging
But I don't know where it's dropping the logs. I self host in AWS, but AWS Lambda, Firehose, and kinesis don't show any relevant logs
r
Rebecca Cowart
01/07/2025, 6:08 PM@Billy H Take a look at this guide, which explains how to find the fleetd logs. Let me know if you find anything in the logs!
b
Billy H
01/07/2025, 6:13 PMSo this is logs for the fleet agent on workstations no? Where would I find the logs for the Fleet server errors (ie. this SMTP error)?
r
Rebecca Cowart
01/07/2025, 6:18 PM@Billy H That's correct. The Fleet server logs live on the server and go to their own stdout and stderr files. Their location is dependent on your deployment setup. For instance, if you're using AWS with Terraform modules, those logs will be in AWS Cloudwatch.
b
Billy H
01/07/2025, 9:08 PM@Rebecca Cowart do you know where in Cloudwatch these would be? I'm searching through all the log groups in cloud watch and see no issues related to SMTP or that contain the string gmail
r
Rebecca Cowart
01/08/2025, 10:20 PM@Billy H I've been looking into this. Searching log groups for "fleet" would be a good method to try. You should also be able to pull up the Fleet container's logs in ECS.
b
Billy H
05/21/2025, 7:16 PM@Rebecca Cowart Sorry for the super long delay on this. I was able to get the logs from the ECS service:
{"component":"http","err":"validation failed: SMTP Options a mail error occurred: sending mail: could not dial smtp host: dialing with timeout: tls: first record does not look like a TLS handshake","level":"debug","method":"PATCH","took":"30.00228408s","ts":"2025-05-21T19:14:13.013366732Z","uri":"/api/latest/fleet/config","user":"<mailto:sanitized@example.com|sanitized@example.com>","uuid":"c261cdd4-234d-4b3e-82e5-27c9148a76e4"}Billy H
05/21/2025, 7:17 PMI was able to test sending SMTP mail with the exact same settings that I have in fleet from a python script and they seem to be going through just fine so I know that the issue is not on the Google Workspace side
Billy H
05/21/2025, 8:11 PMWas finally able to get it working with SSL and port 465, but I'm guessing that Fleet doesn't use STARTTLS which is why Google wont accept it on port 587
5 Views