We have numerous tasks, fixlets, and actions running or available in our BigFix Console that require local user IDs and passwords. Our team is planning to update the passwords for those local accounts. As a result, we need to identify the custom fixlets, created by our engineers, that include credentials within the action script.
We would appreciate your assistance in finding the most efficient way to identify these specific tasks in our BigFix Console.
Using Custom Filters is the simplest approach to search within the Fixlet/tasks action script:
Another method of using a session relevance query:
((id of it as string, name of issuer of it as string | "N/A", name of it as string | "N/A", name of site of it as string | "N/A") of bes fixlets whose (custom flag of it AND (task flag of it OR fixlet flag of it) AND not analysis flag of it AND not baseline flag of it AND not group flag of it AND name of issuer of it as string as lowercase contains "OPERATOR_NAME" as lowercase AND script of actions of it as string as lowercase contains "YOUR_COMPANY_PASS" as lowercase))
The approaches from @vk.khurava should also work if you are using secure parameters and passing secrets (hopefully you are ) so the passwords are not passed in human readable format. You would need to search on something like the variable name used in the javascript for the password
Or as a session relevance approach such as in the presentation debugger
(names of sites of it, ids of it, names of it) of fixlets whose (exists scripts whose (it as lowercase contains "secret") of actions of it) of bes custom sites
) so the passwords are not passed in human readable format. You would need to search on something like the variable name used in the javascript for the password
