oneiroi
09/27/2022, 3:55 PMKathy Satterlee
09/27/2022, 4:01 PMoneiroi
09/27/2022, 4:15 PM...
fleetURL = "<https://fleet.FQDN.tld>"
policyURI = "/api/v1/fleet/global/policies"
fleet_token = os.getenv("FLEET_TOKEN")
if not fleet_token:
getpass("Please enter your FLEET API token:")
headers = {"Authorization":"Bearer "+fleet_token}
req = <http://requests.post|requests.post>(fleetURL + policyURI, json=payload, headers=headers)
...
payload for example is built out as follows:
{
"name": "audit_gatekeeper_disabled",
"query": "SELECT 1 as compliant WHERE NOT EXISTS (SELECT assessments_enabled AS compliant FROM gatekeeper where compliant !=1);",
"description": "FleetDM audit check policy foraudit_gatekeeper_disabled",
"resolution": "Please contact #it-helpdesk on slack for assistance",
"platform": "darwin"
}
Kathy Satterlee
09/27/2022, 4:20 PMoneiroi
09/27/2022, 4:22 PMKathy Satterlee
09/27/2022, 4:25 PMBenjamin Edwards
09/27/2022, 4:35 PM