Fleet: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 91: | Zeile 91: | ||
***Linux(deb) | ***Linux(deb) | ||
*fleetctl package --type=deb --enable-scripts --fleet-desktop --fleet-url=https://fleet.it113.int:8080 --enroll-secret=gYpHjdyHvQb3/JD1K2NSdnJg4aAqgSH8 | *fleetctl package --type=deb --enable-scripts --fleet-desktop --fleet-url=https://fleet.it113.int:8080 --enroll-secret=gYpHjdyHvQb3/JD1K2NSdnJg4aAqgSH8 | ||
| + | ;Debian Paket auf den Hosts ausrollen | ||
| + | *apt install ./fleet-osquery_1.41.0_amd64.deb | ||
| + | *systemctl status orbit.service | ||
==Installation auf dem Client== | ==Installation auf dem Client== | ||
Version vom 19. April 2025, 19:57 Uhr
FleetDM Docker-Installation
Docker Installation und andere Dinge
- apt install -y docker.io docker-compose curl
Zertifikate und Keys besorgen
- mkdir -p /mnt/docker/fleet
- cd /mnt/docker/fleet
- wget https://web.samogo.de/certs/ca.crt
- wget https://web.samogo.de/certs/star.it113.int.crt
- wget https://web.samogo.de/certs/star.it113.int.key
Dockercompose
- mkdir -p /mnt/docker/fleet
- cd /mnt/docker/fleet
- vi docker-compose.yaml
version: '3.8'
services:
mysql:
image: mysql:8.0.36
container_name: mysql
environment:
MYSQL_ROOT_PASSWORD: rootpw
MYSQL_DATABASE: fleet
MYSQL_USER: fleet
MYSQL_PASSWORD: changeme
volumes:
- ./mysql-data:/var/lib/mysql
healthcheck:
test: ["CMD", "mysqladmin", "ping", "-pfleet"]
interval: 10s
timeout: 5s
retries: 10
redis:
image: redis:7
container_name: redis
volumes:
- ./redis-data:/data
fleet-init:
image: fleetdm/fleet:v4.49.1
container_name: fleet-init
depends_on:
mysql:
condition: service_healthy
redis:
condition: service_started
environment:
FLEET_MYSQL_ADDRESS: mysql:3306
FLEET_MYSQL_DATABASE: fleet
FLEET_MYSQL_USERNAME: fleet
FLEET_MYSQL_PASSWORD: changeme
FLEET_REDIS_ADDRESS: redis:6379
command: fleet prepare db --no-prompt
restart: "no"
fleet:
image: fleetdm/fleet:v4.49.1
container_name: fleet
ports:
- "8080:8080"
depends_on:
fleet-init:
condition: service_completed_successfully
environment:
FLEET_MYSQL_ADDRESS: mysql:3306
FLEET_MYSQL_DATABASE: fleet
FLEET_MYSQL_USERNAME: fleet
FLEET_MYSQL_PASSWORD: changeme
FLEET_REDIS_ADDRESS: redis:6379
FLEET_SERVER_TLS: "false"
command: fleet serve
- docker-compose up -d
Fleetctl besorgen
- wget https://github.com/fleetdm/fleet/releases/download/fleet-v4.66.0/fleetctl_v4.66.0_linux_amd64.tar.gz
- tar -xvzf fleetctl_v4.66.0_linux_amd64.tar.gz
- cp fleetctl_v4.66.0_linux_amd64/fleetctl /usr/local/sbin/
- fleetctl --version
fleetctl - version 4.66.0 branch: HEAD revision: af941c92db22bd73fde50810f8fd6281a4029741 build date: 2025-04-04 build user: runner go version: go1.23.4
Paket für die die Clients bauen
- In der Oberfläche
- Hosts
- Add Hosts
- Linux(deb)
- Add Hosts
- fleetctl package --type=deb --enable-scripts --fleet-desktop --fleet-url=https://fleet.it113.int:8080 --enroll-secret=gYpHjdyHvQb3/JD1K2NSdnJg4aAqgSH8
- Debian Paket auf den Hosts ausrollen
- apt install ./fleet-osquery_1.41.0_amd64.deb
- systemctl status orbit.service
Installation auf dem Client
- Auf dem Client muss das ca.crt ausgerollt sein.