https://github.com/osquery/osquery logo
Title
d

Dhruv Rathod

11/08/2021, 2:33 PM
hi all! is there any doc/demonstration about how OSquery enrollment for TLS communication works? like how are the secret file and certificates verified, etc.?
m

Mike Myers

11/09/2021, 1:21 AM
there's just this https://osquery.readthedocs.io/en/latest/deployment/remote/#simple-shared-secret-enrollment but if you have specific questions maybe they can be answered here
d

Dhruv Rathod

11/09/2021, 6:03 AM
oh I think this answers my question, but just to be sure, when osquery provides the correct enrollment secret to the server, the server sends a
NODE_KEY
back, right? which means that the validation was successful?
and the node_key can be used for future authentication too as I understand
m

Mike Myers

11/09/2021, 10:49 PM
@Stefano Bonicatti do you know? I'm not that familiar with this part
s

Stefano Bonicatti

11/09/2021, 11:02 PM
Yes, it’s correct; also if the node key sent back to the server by osquery is incorrect, osquery then receives a response with
node_invalid: true
and will attempt to re-enroll
d

Dhruv Rathod

11/10/2021, 7:56 AM
oh alright Thanks a lot for your help guys! 😄