Are query packs a recommended way of scheduling qu...
# generalg
grant seltzer
08/19/2020, 7:01 PMAre query packs a recommended way of scheduling queries? I'm confused about the difference between 'Schedule' configuration option and 'Pack' configuration options.
z
zwass
08/19/2020, 7:01 PM
Yeah, typically. Query packs help provide a bit more organization and context, and can also be loaded from separate files.
g
grant seltzer
08/19/2020, 7:02 PMInteresting, I assume packs came later on
grant seltzer
08/19/2020, 7:02 PMI mentioned in #kolide and #extensions as well as below, but would you expect pack query results to be logged in the same way as scheduled queries?
z
zwass
08/19/2020, 7:03 PM
Yes -- just with the pack name prepended to the query name
g
grant seltzer
08/19/2020, 7:03 PMHm - strange. Maybe a bug that it's not working
grant seltzer
08/19/2020, 7:03 PMThank you!
🍻 1
grant seltzer
08/19/2020, 7:12 PMah - it was because it wasn't set to a snapshot
grant seltzer
08/19/2020, 7:12 PM🙂
4 Views