Fleet logo
Menu An icon indicating that interacting with this button will open the navigation menu.
Fleet logo An 'X' icon indicating that this can be interacted with to close the navigation menu.
Multi platform
Device management + MDM Orchestration + monitoring Software management + CVEs, usage, app library Integrations
Docs
Stories
News Ask around Meetups Schedule a demo Share your story COMPANY The handbook Testimonials
Pricing Try it yourself

Tables

Fleet uses osquery tables to query operating system, hardware, and software data. Each table provides specific data for analysis and filtering.

macOS Apple

Linux Linux

Windows Windows

Chrome ChromeOS

fleetd_logs

click to open the table of contents
macOS logo Windows logo Linux logo

fleetd​_logs

Returns the logs from fleetd's current session. Logs are stored in memory, so they are erased when it restarts.

Column Type Description
error text The error attached to the event
level text The log-level of the event. Info, Debug, etc.
message text The message attached to the event
payload text Any extra data attached to the event, JSON
time text The time the event was captured, UTC.

Example

SELECT * FROM fleetd_logs

Return only log entries with errors attached

SELECT * FROM fleetd_logs WHERE error != ""
Edit page

Questions?

Ask us anything
{{table.title}} evented table