https://github.com/osquery/osquery logo
Join Slack
Powered by
First I want to thank everyone for helping me get ...
# fleet
e
First I want to thank everyone for helping me get going with this amazing tool. I just created a bunch of new policies. Am I correct to assume that the tool will correct these or just report on the violations and then I will need to go one-by-one to fix? Also when does the tool start to update the Yes/No statues?
k
You'll start to see your pass/fail results after the next policy interval (1 hour). You can speed up the process by going in to each host's detail page and hitting 'refetch', which will queue those queries up to run now.
You can set up 
automations
for policies to either run scripts or install software automatically for failing hosts. Those automations run once a day by default. You can also use webhooks to alert you when hosts are newly failing policies, or create Jira or Zendesk tickets.
e
Do you have an example for turning on the Mac OS firewall that I can use?
u
That would actually be a good one to manage with configuration profiles.
Rather than policies, that is.
We may have an example mobileconfig for that, let me check.
e
Will this work on Mac OS?
enable_firewall_fixed.sh
enable_firewall_fixed.sh
Can we jump on a huddle and you can show me how to enable this?
k
That could work as well, though I'd typically recommend going the profile route for anything that can be managed as a config. That way. it's constantly enforced and cannot be changed. Here are the docs for policy automations using scripts: https://fleetdm.com/guides/policy-automation-run-script#basic-article And enforcing os settings using MDM: https://fleetdm.com/guides/custom-os-settings I'll DM you a calendly link so you can set up a time to chat as well.
d
Hey @Eric Ackerman, if you haven’t already seen it, our policy library has remediation steps for many of the macOS policies. Take a look here: https://fleetdm.com/policies
2 Views
Open in Slack
PreviousNext
Powered by