In this guide, we'll cover the following concepts:
Once you log into Fleet, you are presented with the Home page.
To add your device:
It may take several seconds for Fleet osquery to send your device's data to Fleet.
In the background, Fleet ran several checks to assess the security hygiene of your device.
In Fleet, these checks are referred to as "policies."
With Fleet, you can ask a multitude of questions to help you manage, monitor, and identify threats on your devices, but if you are just starting out, and unsure of what to ask, Fleet comes baked in with a query library of common questions.
So, let's start by asking the following question about your device:
This question can easily be answered by running this simple query: "Get operating system information."
To run this query on your device:
SELECT * FROM os_version;.
The query may take several seconds to complete, because Fleet has to wait for the osquery agents to respond with results. Only online hosts will respond with results to a live query.
Fleet's query response time is inherently variable because of osquery's heartbeat response time. This helps prevent performance issues on hosts.
When the query has finished, you should see several columns in the "Results" table:
The "name" column answers: "What operating system is installed on my device?"
The "version" column answers: "What version of the installed operating system is on my device?"
If you notice something we've missed or could be improved on, please follow this link and submit a pull request to the Fleet repo.
Back to top