The situation is as follows:
There is a Fixlet in a Custom Site
The site has only a subset of computers subscribed to it.
An action is taken on the Fixlet and Dynamically Targeted to all computers (created in All Content domain)
The result is that all computers evaluate the source Fixlet even though many are not subscribed to the Fixlet’s source site.
Is this expected behavior? If so it’s a very poor execution. I would expect that only those endpoints that can see the source content (i.e. subscribed to the source site of the Fixlet) would be able to see this action as it is created from that site.
If the operator wants to create the Action as a policy that includes only computers that may be subscribed to this site in the future he/she would have to enable the “subscribed sites” property and then select the “By Retrieved Properties >> By Subscribed Sites >> Select only the site where the desired targets are subscribed”
I’m asking because I’ve never seen this behavior. In many cases where I’ve deployed, say a Windows Patch Fixlet this way, the Fixlet relevance clauses keep it from becoming relevant to non-Windows computers. And since it’s expected that all Windows computers will be subscribed to the “Patches for Windows” site it’s just eluded detection.
So I think I’ve answered my own question about this behavior, but I would definitely welcome anyone to confirm my assumption or tell me what I’m missing.
I haven’t found anything addressing this specifically in the BigFix documentation.