Fleet logo
Menu An icon indicating that interacting with this button will open the navigation menu.
Fleet logo An 'X' icon indicating that this can be interacted with to close the navigation menu.
Device management + MDM Orchestration + monitoring Software management + CVEs, usage, app library Integrations
Docs
Stories
What people are saying News Ask around Take a tour Meetups COMPANY Origins   (Fleet & osquery) The handbook Logos/artwork Why open source?
Pricing Try it yourself

Tables

Fleet uses osquery tables to query operating system, hardware, and software data. Each table provides specific data for analysis and filtering.

macOS Apple

Linux Linux

Windows Windows

Chrome ChromeOS

keychain_acls

click to open the table of contents
macOS logo

keychain​_acls

Applications that have ACL entries in the keychain. NOTE: osquery limits frequent access to keychain files. This limit is controlled by keychain_access_interval flag.

Column Type Description
authorizations text A space delimited set of authorization attributes
description text The description included with the ACL entry
keychain_path text The path of the keychain
label text An optional label tag that may be included with the keychain entry
path text The path of the authorized application

Example

Identify keychain items with permissions granted to Applications at the system or user level.

SELECT * FROM keychain_acls WHERE path LIKE '/System/Applications/%%' OR path LIKE '/Users/%%/Applications/%%';
Edit page

Questions?

Ask us anything
{{table.title}} evented table