I often find myself needing to write relevance statements against the BES Client context. Some inspectors are only available in the actual BES Client, but not the Relevance Debugger.
Some example statements otherwise not possible from the Relevance Debugger.
name of current user keys (logged on users) of registry
names of application usage summaries
urls of sites
values of headers “Subject” of relevant fixlets of sites whose (name of it = “Enterprise Security”)
A few additional notes.
It is tested against XP, W2K, Vista, Windows 7.
It requires the .NET framework 2.0 or above.
Works on x64 systems.
Tested to work against 8.0.
The queries are sent to the BigFix Client via the Client API, so the results are not immediate, rather the BigFix Client will process and prioritize accordingly.
I have tried using the tool and consistently receive an error stating “Error attempting to access BES Client API” as the title and “Exception from HRESULTS: 0xFFFFFFF8” as the content of the dialog box. I am currently using BES 7.1.1.315. Can you please suggest how I can workaround this issue?
Thanks for your reply. How can I get this API and the PDF about it? All I can see is “(contact us for more information)” on http://forum.bigfix.com/viewtopic.php?pid=3312. I’d like BES API, BES Agent API, and BES Client Compliance API information, so I can evaluate what my options are for making my own console.
What we’re trying to deliver is a way of presenting locally the associated download link for each relevant fixlet.
We don’t use Webreports, and console access is very much restricted in our environment as BigFix is primarily used for reporting. This piece would prove that the BigFix relevance is way better than WSUS/Windows Update/SCCM. I know this, but i’m not the one that needs convincing.
This kind of gets me where I want, is there a way of appending the actions script, after the first ‘download …’, in ‘take default action’ for example …
example
q: (values of headers “Subject” of relevant fixlets whose (value of header “Subject” of it as lowercase starts with “ms” AND value of header “Subject” of it as lowercase does not contain “corrupt”) of site “http://sync.bigfix.com/cgi-bin/bfgather/bessecurity”)
Interesting, so the following expression will return the bulletin, together with the relevance which I would like to pipe to txt file, my next question is how do I make this more elegant and have it return a single bulletin followed by the associated relevance, followed by the next bulletin followed by associated relevance … ? (i need something like a line break between the concatenation or something …)
I want to remove “ms11-003” and replace with “ms”
concatenation of (values of headers “Subject” of relevant fixlets whose (value of header “Subject” of it as lowercase starts with “ms11-003” as lowercase AND value of header “Subject” of it as lowercase does not contain “corrupt”) of sites whose (name of it = “Enterprise Security”)) & " is required because one of the following conditions are TRUE : " & concatenation " AND " of (values of headers “X-Relevant-When” of relevant fixlets whose (value of header “Subject” of it as lowercase starts with “ms11-003” as lowercase AND value of header “Subject” of it as lowercase does not contain “corrupt”) of sites whose (name of it = “Enterprise Security”))
I think you meant “all of the following conditions are TRUE”.
Here is an example statement that will concatenation the results with HTML formatting.
(html “
” & it & html “
”) of concatenations of trs of (td of value of header “Subject” of it & td of concatenations (html " AND
") of values of headers “X-Relevant-When” of it) of relevant fixlets whose (value of header “Subject” of it as lowercase starts with “ms” as lowercase AND value of header “Subject” of it as lowercase does not contain “corrupt”) of sites whose (name of it = “Enterprise Security”)
I kept the formatting simple, and here is how this statement will look like from the Client UI Dashboard.
Nick, when you reply, can you please start a new thread because we are veering from the original thread.