https://github.com/osquery/osquery logo
Powered by
Title
g

grahamgilbert

05/14/2020, 4:35 PM
How are people handling short lived certs and fleet (such as ACM or letsencrypt)?
z

zwass

05/14/2020, 4:39 PM
If you provide the root to osquery will it verify?
s

sundsta

05/14/2020, 4:48 PM
LetsEncrypt is trusted by most CA stores, so no need to provide the root cert
z

zwass

05/14/2020, 4:50 PM
IIRC osquery doesn't use the system roots on Windows though?
s

sundsta

05/14/2020, 5:10 PM
It doesn’t? That’s interesting and good to know
g

grahamgilbert

05/14/2020, 5:57 PM
Ah, root CA was the part that I missed in my head.
2 Views
#kolideJoin Slack
Powered by