Channels
SK
9 months agoHello all, I am trying to understand the logs of the vulnerabilities part, what does
mean?"cron":"vulnerabilities","leader":"Not the leader. Skipping..."
Tomas Touceda
9 months agohi, this happens when you are running vulnerability processing on a dynamic host. How many instances of fleet are you running?SK
9 months ago4 instances
My idea was to use one instance that is not that busy to handle the vuln partTomas Touceda
9 months agook, you can statically assign an instance to be the one doing vulnerability processing, see here for more details: https://github.com/fleetdm/fleet/blob/main/docs/2-Deploying/2-Configuration.md#vulnerabilitiesSK
9 months agoGreat, added the option. I was wondering regarding the instances if I want to use the software inventory, do I need to add
to all the instances?FLEET_BETA_SOFTWARE_INVENTORY=1Tomas Touceda
9 months agocorrect, or you can set it as the config as wellSK
9 months agowith config you mean this?host_settings:enable_software_inventory: trueTomas Touceda
9 months agocorrectSK
9 months agoThanks, will do, hopefully that I will see it afer that in the UI
A quick check, below needs to be added in the fleet.yml file of each fleet instance on each server when started right? I tried adding it through apply of fleetctl but don't see it when I get the config.vulnerabilities: current_instance_checks: yesTomas Touceda
9 months agothat config cannot be applied through fleetctl, fleet server config needs to be applied "by hand" as it is used at the server startup. fleetctl apply is for config that can be changed at runtime. That config is something you need to add to each instance, however, you only want one with value
and the rest withyesno
View count: 2