{"id":8365,"date":"2021-03-22T21:37:25","date_gmt":"2021-03-22T18:37:25","guid":{"rendered":"https:\/\/kifarunix.com\/?p=8365"},"modified":"2024-03-19T18:41:45","modified_gmt":"2024-03-19T15:41:45","slug":"install-fleet-osquery-manager-on-debian-10","status":"publish","type":"post","link":"https:\/\/kifarunix.com\/install-fleet-osquery-manager-on-debian-10\/","title":{"rendered":"Install Fleet Osquery Manager on Debian 10"},"content":{"rendered":"\n<p>In this tutorial, you will learn how to install <a aria-label=\"Fleet (opens in a new tab)\" href=\"https:\/\/fleetdm.com\/\" target=\"_blank\" rel=\"noreferrer noopener\" class=\"rank-math-link\">Fleet<\/a> osquery manager on Debian 10. With the official retirement of the Kolide Fleet as on November 4th, 2020, there has been yet another <a aria-label=\"Fleet (opens in a new tab)\" href=\"https:\/\/fleetdm.com\/\" target=\"_blank\" rel=\"noreferrer noopener\" class=\"rank-math-link\">Fleet<\/a> that offers the same functionality as Kolide Fleet. According to its <a aria-label=\"Github repository (opens in a new tab)\" href=\"https:\/\/github.com\/fleetdm\/fleet\" target=\"_blank\" rel=\"noreferrer noopener\" class=\"rank-math-link\">Github repository<\/a>, &#8220;<em>Fleet is the most widely used open source osquery manager. Deploying osquery with Fleet enables programmable live queries, streaming logs, and effective management of osquery across 50,000+ servers, containers, and laptops. It&#8217;s especially useful for talking to multiple devices at the same time.<\/em>&#8220;<\/p>\n\n\n\n<p>If you are using Ubuntu, you can use the guide below;<\/p>\n\n\n\n<p><a aria-label=\" (opens in a new tab)\" class=\"rank-math-link\" href=\"https:\/\/kifarunix.com\/install-fleet-osquery-manager-on-ubuntu\/\" target=\"_blank\" rel=\"noreferrer noopener\">Install Fleet Osquery Manager on Ubuntu 20.04\/Ubuntu 22.04<\/a><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Installing Fleet Osquery Manager on Debian<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Prerequisites<\/h3>\n\n\n\n<p>In order to install Fleet osquery manager on Debian, there are a few requirements. In our setup, we will be using Debian 10 as our base OS.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Install MySQL Database<\/h4>\n\n\n\n<p>Fleet uses MySQL as its main database<\/p>\n\n\n\n<p>In this setup, we will use MariaDB database. Hence, create latest MariaDB (currently v10.5) APT repository<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>apt install software-properties-common<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>apt-key adv --fetch-keys https:\/\/mariadb.org\/mariadb_release_signing_key.asc<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>echo \"deb [arch=amd64,arm64,ppc64el] http:\/\/sfo1.mirrors.digitalocean.com\/mariadb\/repo\/10.5\/debian $(lsb_release -sc) main\" &gt; \/etc\/apt\/sources.list.d\/mariadb-10.5.list<\/code><\/pre>\n\n\n\n<p>If you need, you can choose <a href=\"https:\/\/downloads.mariadb.org\/mariadb\/repositories\/\" target=\"_blank\" aria-label=\" (opens in a new tab)\" rel=\"noreferrer noopener\" class=\"rank-math-link\">other MariaDB mirrors closed to your region<\/a>.<\/p>\n\n\n\n<p>Update your package cache.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>apt update<\/code><\/pre>\n\n\n\n<p>Run the command install MariaDB server 10.5 on Debian 10<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>apt install mariadb-server<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>systemctl status mariadb.service<\/code><\/pre>\n\n\n\n<p>MariaDB is started and enabled to run on system boot upon installation.<\/p>\n\n\n\n<pre class=\"scroll-box\"><code>\n\u25cf mariadb.service - MariaDB 10.5.9 database server\n   Loaded: loaded (\/lib\/systemd\/system\/mariadb.service; enabled; vendor preset: enabled)\n  Drop-In: \/etc\/systemd\/system\/mariadb.service.d\n           \u2514\u2500migrated-from-my.cnf-settings.conf\n   Active: active (running) since Mon 2021-03-22 13:19:24 EDT; 10min ago\n     Docs: man:mariadbd(8)\n           https:\/\/mariadb.com\/kb\/en\/library\/systemd\/\n Main PID: 16307 (mariadbd)\n   Status: \"Taking your SQL requests now...\"\n    Tasks: 8 (limit: 1149)\n   Memory: 69.7M\n   CGroup: \/system.slice\/mariadb.service\n           \u2514\u250016307 \/usr\/sbin\/mariadbd\n\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16330]: performance_schema\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16330]: Phase 6\/7: Checking and upgrading tables\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16330]: Processing databases\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16330]: fleetdb\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16330]: information_schema\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16330]: performance_schema\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16330]: Phase 7\/7: Running 'FLUSH PRIVILEGES'\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16330]: OK\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16481]: Checking for insecure root accounts.\nMar 22 13:20:34 debian \/etc\/mysql\/debian-start[16485]: Triggering myisam-recover for all MyISAM tables and aria-recover for all Aria tables\n<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\">Create Fleet Database and Database User<\/h4>\n\n\n\n<p>Run the initial MySQL security script,&nbsp;<strong>mysql_secure_installation<\/strong>, to remove anonymous database users, test tables, disable remote root login.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>mysql_secure_installation<\/code><\/pre>\n\n\n\n<p>By default, MariaDB 10.5 uses unix_socket for authentication by default and hence, can login by just running,&nbsp;<code><strong>mysql -u root<\/strong><\/code>. If have however enabled password authentication, simply run;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>mysql -u root -p<\/code><\/pre>\n\n\n\n<p>Next, create the Fleet database.<\/p>\n\n\n\n<p><strong>Note:<\/strong>&nbsp;<strong>the database database names used here are not standard. Choose any name of your preference.<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>create database fleetdb;<\/code><\/pre>\n\n\n\n<p>Create Fleet database user with all grants on Fleet DB created above.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>grant all on fleetdb.* to fleetadmin@localhost identified by 'StrongP@SS';<\/code><\/pre>\n\n\n\n<p>Reload privileges tables and exit the database;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>flush privileges;\nexit<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\">Install Redis on Debian 10<\/h4>\n\n\n\n<p><em>Fleet uses Redis to ingest and queue the results of distributed queries, cache data, etc.<\/em><\/p>\n\n\n\n<p>Install Redis on Debian 10 by running the command below;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>apt install redis<\/code><\/pre>\n\n\n\n<p>Redis server is similarly started upon installation;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>systemctl status redis-server.service<\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\n\u25cf redis-server.service - Advanced key-value store\n   Loaded: loaded (\/lib\/systemd\/system\/redis-server.service; enabled; vendor preset: enabled)\n   Active: active (running) since Mon 2021-03-22 13:29:24 EDT; 1s ago\n     Docs: http:\/\/redis.io\/documentation,\n           man:redis-server(1)\n  Process: 17869 ExecStart=\/usr\/bin\/redis-server \/etc\/redis\/redis.conf (code=exited, status=0\/SUCCESS)\n Main PID: 17870 (redis-server)\n    Tasks: 4 (limit: 1149)\n   Memory: 2.2M\n   CGroup: \/system.slice\/redis-server.service\n           \u2514\u250017870 \/usr\/bin\/redis-server 127.0.0.1:6379\n\nMar 22 13:29:24 debian systemd[1]: Starting Advanced key-value store...\n<\/code><\/pre>\n\n\n\n<p>Enable it to run on system boot;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>systemctl enable redis-server<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Install Fleet Osquery Manager<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\">Install the Fleet binary on Debian 10<\/h4>\n\n\n\n<p><em>The Fleet application is distributed as a single static binary. This binary serves:<\/em><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><em>The Fleet web interface<\/em><\/li>\n\n\n\n<li><em>The Fleet application API endpoints<\/em><\/li>\n\n\n\n<li><em>The osquery TLS server API endpoints<\/em><\/li>\n<\/ul>\n\n\n\n<p>Download the latest Fleet binary from the <a href=\"https:\/\/github.com\/fleetdm\/fleet\/releases\/\" target=\"_blank\" rel=\"noreferrer noopener\">releases page<\/a>;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>curl -LO https:\/\/github.com\/fleetdm\/fleet\/releases\/download\/fleet-v4.20.1\/fleet_v4.20.1_linux.tar.gz<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>curl -LO https:\/\/github.com\/fleetdm\/fleet\/releases\/download\/fleet-v4.20.1\/fleetctl_v4.20.1_linux.tar.gz<\/code><\/pre>\n\n\n\n<p>Extract the binaries for Linux platform:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>tar xzf fleet_v4.20.1_linux.tar.gz<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>tar xzf fleetctl_v4.20.1_linux.tar.gz<\/code><\/pre>\n\n\n\n<p>Copy Fleet binaries to binaries directories;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>cp fleet_v4.20.1_linux\/fleet \/usr\/local\/bin\/<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>cp fleetctl_v4.20.1_linux\/fleetctl \/usr\/local\/bin\/<\/code><\/pre>\n\n\n\n<p>To verify the binaries are in place;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>which fleet fleetctl<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>\/usr\/local\/bin\/fleet\n\/usr\/local\/bin\/fleetctl<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\">Running&nbsp; Fleet Server on Debian 10<\/h4>\n\n\n\n<h5 class=\"wp-block-heading\">Initialize Fleet Database<\/h5>\n\n\n\n<p>To initialize Fleet infrastructure after installing and setting up all the requirements above, use the&nbsp;<code>fleet prepare db<\/code>&nbsp;as follows;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>fleet prepare db --mysql_address=127.0.0.1:3306 --mysql_database=fleetdb --mysql_username=fleetadmin --mysql_password=StrongP@SS<\/code><\/pre>\n\n\n\n<p>If the initialization completes successfully, you should get the output,<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>Migrations completed.<\/code><\/pre>\n\n\n\n<h5 class=\"wp-block-heading\">Generate SSL\/TLS Certificates<\/h5>\n\n\n\n<p>Fleet server is used to run the main HTTPS server. Hence, run the command below to generate self-signed certificates.<\/p>\n\n\n\n<p>NOTE:&nbsp;<strong>If you are using Self Signed Certificates as in this demo, DO NOT use wildcards lest enrollment of hosts won\u2019t work.<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>openssl req -x509 -nodes -days 3650 -newkey rsa:2048 -keyout \/etc\/ssl\/private\/fleet.key -out \/etc\/ssl\/certs\/fleet.cert -subj \"\/CN=osquery.kifarunix-demo.com\/\"<\/code><\/pre>\n\n\n\n<p><strong>If you can, use the commercial TLS certificates from your preferred trusted CA.<\/strong><\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Launching Fleet Osquery Manager<\/h4>\n\n\n\n<p>Once you have initialized the database, obtained the TLS certs and get a JWT random key, you can then launch it to verify that it can run successfully using the&nbsp;<strong>fleet serve<\/strong>&nbsp;command as shown below.<\/p>\n\n\n\n<p>The syntax for running <code><strong>fleet serve<\/strong><\/code> is given below;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>fleet serve [flags]<\/code><\/pre>\n\n\n\n<p>There are different ways in which you can specify Fleet flags;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"#cli-flags\" class=\"rank-math-link\">On command line<\/a><\/li>\n\n\n\n<li><a href=\"#env-variables\" class=\"rank-math-link\">Using environment variables<\/a><\/li>\n\n\n\n<li><a href=\"#config-file\" class=\"rank-math-link\">Using a configuration file<\/a><\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"cli-flags\">Specifying Fleet Manager Flags on Command line<\/h5>\n\n\n\n<p>You can specify the flags on command line as shown below;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>fleet serve --mysql_address=127.0.0.1:3306 \\\n--mysql_database=fleetdb --mysql_username=fleetadmin --mysql_password=StrongP@SS \\\n--server_cert=\/etc\/ssl\/certs\/fleet.cert --server_key=\/etc\/ssl\/private\/fleet.key \\\n--logging_json<\/code><\/pre>\n\n\n\n<p>If all is well, you should see that Fleet server is now running on&nbsp;<strong>0.0.0.0:8080<\/strong>&nbsp;and hence can be accessed on&nbsp;<strong>https:\/\/&lt;server-IP&gt;:8080<\/strong>.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>{\"component\":\"service\",\"err\":null,\"level\":\"info\",\"method\":\"ListUsers\",\"took\":\"1.943838ms\",\"ts\":\"2021-03-22T17:42:25.40539689Z\",\"user\":\"none\"}\n{\"address\":\"0.0.0.0:8080\",\"msg\":\"listening\",\"transport\":\"https\",\"ts\":\"2021-03-22T17:42:25.406425857Z\"}<\/code><\/pre>\n\n\n\n<p>Press Ctrl+c to stop Fleet server.<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"env-variables\">Specifying Fleet Manager Flags Using Environment Variables<\/h5>\n\n\n\n<p>Similarly, you can specify the Fleet flags using environment variables as shown below (update the values for the environment variables and paste the command on the terminal);<\/p>\n\n\n\n<pre class=\"scroll-box\"><code>\nFLEET_MYSQL_ADDRESS=127.0.0.1:3306 \\\nFLEET_MYSQL_DATABASE=fleetdb \\\nFLEET_MYSQL_USERNAME=fleetadmin \\\nFLEET_MYSQL_PASSWORD=StrongP@SS \\\nFLEET_REDIS_ADDRESS=127.0.0.1:6379 \\\nFLEET_SERVER_CERT=\/etc\/ssl\/certs\/fleet.cert \\\nFLEET_SERVER_KEY=\/etc\/ssl\/private\/fleet.key \\\nFLEET_LOGGING_JSON=true \\\n$(which fleet) serve\n<\/code><\/pre>\n\n\n\n<p>Similarly, press Ctrl+c to stop Fleet server.<\/p>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"config-file\">Setting the Fleet Manager Flags in a Configuration file<\/h5>\n\n\n\n<p>You can create a YAML configuration file where you can define the flags and their options. For example, let us create a configuration file, e.g <strong><code>\/etc\/fleet\/fleet.yml<\/code><\/strong>.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>mkdir \/etc\/fleet<\/code><\/pre>\n\n\n\n<p>The, create a YAML configuration file under the directory above.<\/p>\n\n\n\n<p>You can simply execute the command below and be sure to replace your settings appropriately.<\/p>\n\n\n\n<pre class=\"scroll-box\"><code>\ncat > \/etc\/fleet\/fleet.yml &lt;&lt; 'EOL'\nmysql:\n  address: 127.0.0.1:3306\n  database: fleetdb\n  username: fleetadmin\n  password: StrongP@SS\nredis:\n  address: 127.0.0.1:6379\nserver:\n  cert: \/etc\/ssl\/certs\/fleet.cert\n  key: \/etc\/ssl\/private\/fleet.key\nlogging:\n  json: true\n# auth:\n# jwt_key: 0iXLJRKhB77puDm13G6ehgkClK0kff6N\nEOL\n<\/code><\/pre>\n\n\n\n<p>Next, launch the Fleet manager by running the command below;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>fleet serve -c \/etc\/fleet\/fleet.yml<\/code><\/pre>\n\n\n\n<p>Similarly, press Ctrl+c to stop Fleet server.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Create Fleet Systemd Service Unit on Debian 10<\/h4>\n\n\n\n<p>Once you have verified that Fleet is running fine, create a systemd service file, <strong><code>\/etc\/systemd\/system\/fleet.service<\/code><\/strong>. You can use any method shown above to specify the flags for <code><strong>ExecStart <\/strong><\/code>option while creating the systemd service unit file.<\/p>\n\n\n\n<p>Example of Fleet systemd service unit file with Flags specified in &#8216;cli&#8217; like format.<\/p>\n\n\n\n<pre class=\"scroll-box\"><code>\ncat > \/etc\/systemd\/system\/fleet.service &lt;&lt; 'EOL'\n[Unit]\nDescription=Fleet Osquery Fleet Manager\nAfter=network.target\n\n[Service]\nLimitNOFILE=8192\nExecStart=\/usr\/local\/bin\/fleet serve \\\n  --mysql_address=127.0.0.1:3306 \\\n  --mysql_database=fleetdb \\\n  --mysql_username=fleetadmin \\\n  --mysql_password=StrongP@SS \\\n  --redis_address=127.0.0.1:6379 \\\n  --server_cert=\/etc\/ssl\/certs\/fleet.cert \\\n  --server_key=\/etc\/ssl\/private\/fleet.key \\\n  --logging_json\nExecStop=\/bin\/kill -15 $(ps aux | grep \"fleet serve\" | grep -v grep | awk '{print$2}')\n\n[Install]\nWantedBy=multi-user.target\nEOL\n<\/code><\/pre>\n\n\n\n<p>The method I preferred myself is to use the configuration file instead. The below service file uses the configuration file with Fleet flags defined as shown <a class=\"rank-math-link\" href=\"https:\/\/kifarunix.com\/install-fleet-osquery-manager-on-ubuntu\/#config-file\">above<\/a>.<\/p>\n\n\n\n<pre class=\"scroll-box\"><code>\ncat &gt; \/etc\/systemd\/system\/fleet.service &lt;&lt; 'EOL'\n[Unit]\nDescription=Fleet Osquery Fleet Manager\nAfter=network.target\n\n[Service]\nLimitNOFILE=8192\nExecStart=\/usr\/local\/bin\/fleet serve -c \/etc\/fleet\/fleet.yml\nExecStop=\/bin\/kill -15 $(ps aux | grep \"fleet serve\" | grep -v grep | awk '{print$2}')\n\n[Install]\nWantedBy=multi-user.target\nEOL\n<\/code><\/pre>\n\n\n\n<p>Reload systemd configurations.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>systemctl daemon-reload<\/code><\/pre>\n\n\n\n<p>Start and enable Fleet service.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>systemctl enable --now fleet<\/code><\/pre>\n\n\n\n<p>Check the status;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>systemctl status fleet<\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\n\u25cf fleet.service - Fleet Osquery Fleet Manager\n   Loaded: loaded (\/etc\/systemd\/system\/fleet.service; disabled; vendor preset: enabled)\n   Active: active (running) since Mon 2021-03-22 13:44:47 EDT; 2s ago\n Main PID: 19114 (fleet)\n    Tasks: 5 (limit: 1149)\n   Memory: 14.9M\n   CGroup: \/system.slice\/fleet.service\n           \u2514\u250019114 \/usr\/local\/bin\/fleet serve -c \/etc\/fleet\/fleet.yml\n\nMar 22 13:44:47 debian systemd[1]: fleet.service: Control process exited, code=exited, status=1\/FAILURE\nMar 22 13:44:47 debian fleet[19056]: {\"terminated\":\"http: Server closed\",\"ts\":\"2021-03-22T17:44:47.059951181Z\"}\nMar 22 13:44:47 debian systemd[1]: fleet.service: Failed with result 'exit-code'.\nMar 22 13:44:47 debian systemd[1]: Stopped Fleet Osquery Fleet Manager.\nMar 22 13:44:47 debian systemd[1]: Started Fleet Osquery Fleet Manager.\nMar 22 13:44:47 debian fleet[19114]: Using config file:  \/etc\/fleet\/fleet.yml\nMar 22 13:44:47 debian fleet[19114]: {\"component\":\"service\",\"err\":null,\"level\":\"info\",\"method\":\"ListUsers\",\"took\":\"349.023\u00b5s\",\"ts\":\"2021-03-22T17:44:47.121370591Z\",\"user\":\"\nMar 22 13:44:47 debian fleet[19114]: {\"address\":\"0.0.0.0:8080\",\"msg\":\"listening\",\"transport\":\"https\",\"ts\":\"2021-03-22T17:44:47.122012677Z\"}\n<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Access Fleet Web Interface<\/h3>\n\n\n\n<p>Fleet can be accessed on the browser using the URL&nbsp;<strong>https:\/\/&lt;server-IP_OR_hostname&gt;:8080<\/strong>.<\/p>\n\n\n\n<p>If firewall is running, open this port to allow external access;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>ufw allow 8080\/tcp<\/code><\/pre>\n\n\n\n<p>Then access Fleet Web interface from browser. and proceed to finalize the setup of Fleet Osquery manager on Debian 10;<\/p>\n\n\n\n<p>Create the admin user;<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1379\" height=\"907\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin.png\" alt=\"install Fleet osquery manager on Debian 10\" class=\"wp-image-8318\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin.png?v=1616229903 1379w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin-768x505.png?v=1616229903 768w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin-150x99.png?v=1616229903 150w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin-300x197.png?v=1616229903 300w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin-696x458.png?v=1616229903 696w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin-1068x702.png?v=1616229903 1068w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin-639x420.png?v=1616229903 639w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/create-fleet-admin-741x486.png?v=1616229903 741w\" sizes=\"(max-width: 1379px) 100vw, 1379px\" \/><\/figure>\n\n\n\n<p>Enter your organization details, Name and url to logo.<\/p>\n\n\n\n<p>Set the Fleet server URL.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1121\" height=\"792\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url.png\" alt=\"\" class=\"wp-image-8345\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url.png?v=1616259064 1121w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url-768x543.png?v=1616259064 768w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url-150x106.png?v=1616259064 150w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url-300x212.png?v=1616259064 300w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url-696x492.png?v=1616259064 696w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url-1068x755.png?v=1616259064 1068w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url-594x420.png?v=1616259064 594w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/03\/fleet_url-100x70.png?v=1616259064 100w\" sizes=\"(max-width: 1121px) 100vw, 1121px\" \/><\/figure><\/div>\n\n\n<p>Submit the details and proceed to Fleet web interface.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1917\" height=\"652\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2022\/09\/fleet-dashboard.png\" alt=\"\" class=\"wp-image-14135\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2022\/09\/fleet-dashboard.png?v=1664216524 1917w, https:\/\/kifarunix.com\/wp-content\/uploads\/2022\/09\/fleet-dashboard-768x261.png?v=1664216524 768w, https:\/\/kifarunix.com\/wp-content\/uploads\/2022\/09\/fleet-dashboard-1536x522.png?v=1664216524 1536w\" sizes=\"(max-width: 1917px) 100vw, 1917px\" \/><\/figure>\n\n\n\n<p>And that marks the end of our tutorial on how to install Fleet Osquery Manager. In our next tutorial, you will learn how to enroll Osquery agents to Fleet manager.<\/p>\n\n\n\n<p><a aria-label=\" (opens in a new tab)\" href=\"https:\/\/kifarunix.com\/enroll-osquery-hosts-on-fleet-manager\/\" target=\"_blank\" rel=\"noreferrer noopener\" class=\"rank-math-link\">How to Enroll Osquery Hosts on Fleet Manager<\/a><\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Reference<\/h3>\n\n\n\n<p><a aria-label=\"Installing Fleet (opens in a new tab)\" href=\"https:\/\/github.com\/fleetdm\/fleet\/blob\/master\/docs\/2-Deployment\/1-Installation.md#installing-the-fleet-binary\" target=\"_blank\" rel=\"noreferrer noopener\" class=\"rank-math-link\">Installing Fleet<\/a><\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Other Related Tutorials<\/h3>\n\n\n\n<p><a href=\"https:\/\/kifarunix.com\/install-osquery-on-ubuntu\/\" target=\"_blank\" rel=\"noreferrer noopener\">Install Osquery on Ubuntu 20.04<\/a><\/p>\n\n\n\n<p><a href=\"https:\/\/kifarunix.com\/install-osquery-on-debian-10-buster\/\" target=\"_blank\" rel=\"noreferrer noopener\">Install Osquery on Debian 10 Buster<\/a><\/p>\n\n\n\n<p><a href=\"https:\/\/kifarunix.com\/how-to-install-osquery-on-ubuntu-18-04\/\" target=\"_blank\" rel=\"noreferrer noopener\">How to Install Osquery on Ubuntu 18.04<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In this tutorial, you will learn how to install Fleet osquery manager on Debian 10. With the official retirement of the Kolide Fleet as on<\/p>\n","protected":false},"author":1,"featured_media":8371,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rank_math_lock_modified_date":false,"footnotes":""},"categories":[72,121,1065],"tags":[997,3307,3289,3306,3308,3305,3304],"class_list":["post-8365","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-monitoring","category-howtos","category-osquery","tag-debian-10","tag-debian-10-install-fleet","tag-fleet","tag-fleet-debian-10","tag-fleet-osquery-manager","tag-fleet-osquery-manager-debian-10","tag-install-fleet-debian-10","generate-columns","tablet-grid-50","mobile-grid-100","grid-parent","grid-50","resize-featured-image"],"_links":{"self":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/8365"}],"collection":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/comments?post=8365"}],"version-history":[{"count":7,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/8365\/revisions"}],"predecessor-version":[{"id":21890,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/8365\/revisions\/21890"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/media\/8371"}],"wp:attachment":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/media?parent=8365"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/categories?post=8365"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/tags?post=8365"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}