Ahmed Awadelkarim
11/17/2020, 2:28 PMnode_key
? If I run osqueryd
verbose
with the tls_dump
flag, and re-run the command thats returned to me as failing, from the command line it works fine and I get a value for the node_key
I'd expect to see but in the daemon it all comes back empty:
Daemon: {"node_key":""}
CLI: {"node_key": "abc123"}
Again the command I am running from the cli is what is returned to me from osqueryd tls_dump
. I'm assuming this is likely a problem with the remote API but just want to confirm what the discrepancy may be btw the daemon and cli.zwass
Ahmed Awadelkarim
11/17/2020, 8:24 PMosquery_flags
being passed to the daemon at runtime it should be correct, and the tls_dump
seems to capture the correct enroll_secret
in the command that I then copy off and run manually, however bizarrely on my mac when I run osqueryi
the flags do not seem to be correct