Hi fleet team we found out we miss a small portion of our ho

Question

Hi fleet team we found out we miss a small portion of our hosts in fleet maybe could u help to explain what is the possible reason can make it happened

Kathy Satterlee · Answer

This may be related to this issue <https github com fleetdm fleet issues 9132|https github com fleetdm fleet issues 9132> Do you have access to the Fleet database If so run the following query for me ```select from hosts where orbit node key = NULL``` I anticipate that you ll see a similar number of results If you do it would be nice to see what those hosts have in common

wennan.he · Answer

well that is weird because we dont have orbit installed but osquery installed directly

Kathy Satterlee · Answer

Interesting What are you using as your host identifier

Kathy Satterlee · Answer

And what versions of Fleet and osquery are you working with

Kathy Satterlee · Answer

And are you seeing any errors in the Fleet logs

wennan.he · Answer

osquery 5 4 0

wennan.he · Answer

fleet version 4 20 1

wennan.he · Answer

i didn t cfg for host identifier specifically

wennan.he · Answer

so think it is supposed to use host name

wennan.he · Answer

and i didn t see any err log

wennan.he · Answer

and we even cannot find it from local query by osqueryi

zwass · Answer

Are you saying that the query doesn t return results locally via osqueryi either Sounds like it might be an osquery bug

wennan.he · Answer

yes we run the same query on the host but also empty return

zwass · Answer

In that case I think it s likely that osquery can t get the serial What kind of device is this

wennan.he · Answer

bmvm

wennan.he · Answer

nothing special

zwass · Answer

I m not familiar with bmvm

zwass · Answer

Maybe let s open a new thread in < C08V7KTJB|general>

wennan.he · Answer

gonna to doing it thx