bkone
May 14, 2019, 1:51pm
1
I am attempting to create an analysis to show me the local user information. Using a BigFix Action Script I have the following:run.sh run.sh run.sh
This keeps failing. Originally I didn’t have quotes around the entire cut line but added them and it still fails.
Is there another, more efficient method, to obtain local user information? The end result is to use the Reporting to extract the user information from each machine to monitor user creation and deletion along with just knowing what local accounts are present and password information, expiration and settings.
I think it is the Curly Braces. You may need to escape them:
appendfile “cut -f 1 -d: /etc/passwd | xargs -n 1 -I {{} bash -c " echo -e ‘\n{{}’ ; chage -l {{}”" > /var/opt/BESClient/local.txt
bkone
May 14, 2019, 2:48pm
3
Well that allowed it to run but the /var/opt/BESClient/local.txt file is blank. So it doesn’t appear my command actually executed.
what’s in the besclient logs. It might be tripping some where. Does the “run.sh ” has correct syntax of the command?
bkone
May 17, 2019, 1:40pm
7
I added a few more lines to my Action Script -run.sh run.sh run.sh
Here is what the log is showing -http://temserver:52311/cgi-bin/bfgather.exe/mailboxsite16146671 )http://temserver:52311/cgi-bin/bfgather.exe/actionsite )http://temserver:52311/cgi-bin/bfgather.exe/mailboxsite16146671 )
Command failed (Relevance substitution failed ) appendfile “”/usr/bin/awk -F":" ‘{print “Login:” $1 “\tName:” $5 “\tHome:” $6}’ /etc/passwd" > /var/opt/BESClient/local_users.txt (action:456129)
2 quick things -
1 - the forum loves to replace our normal DoubleQuotes with SmartQuotes, but the BigFix Agent thinks SmartQuotes are evil and it hates them. If you use the CODE tag, the forum.
use </> button to avoid " " being converted into “ ” and ' ' being converted into ‘ ’
2 - curly braces { } have special meaning in Action Script. They mean "relevance is inside here - calculate the relevance and use the string result inside. You can escape curly braces by doubling them like this: {{
dos echo {computer name} >> c:\test.txt
will result in
IBMComputer in c:\test.txt
dos echo {{computer name} >> c:\test.txt
will result in
{computer name} in c:\test.txt
TRY:
appendfile "/usr/bin/getent passwd | awk -F ':' {{'print $1;} | xargs -I {{} groups {{} | sed 's/ : /:/g' | tr ' ' ','" > /var/opt/BESClient/group_membership.txt
you can also look in the appendfile on the endpoint and visually inspect it to make sure it contains what you expect.
1 Like
bkone
May 17, 2019, 3:14pm
9
Dang it! I keep forgetting about that.
Thank brolly33 those tips got me going. Appreciate the assistance and education again.
bkone
May 17, 2019, 6:20pm
11
Everything is creating the text file except the local_users.txt file. The run.sh on the server all looks correct but when I run it from the server it demonstrates the same behavior. If I copy the line and run it on the command line itself it works. I’m confused.
appendfile /usr/bin/getent passwd | awk -F ':' {{'print "Login:" $1 "\tName:" $5 "\tHome:" $6'} > /var/opt/BESClient/local_users.txt
All the others are working. I am trying to get output similar to this:
Maybe there is a better way to get the Login user, name and home directory.
delete __appendfile
delete run.sh
appendfile #!/bin/bash
appendfile /bin/cat /etc/passwd > /var/opt/BESClient/passwd.txt
appendfile /usr/bin/getent passwd | awk -F ':' {{'print "Login:" $1 "\tName:" $5 "\tHome:" $6'} > /var/opt/BESClient/local_users.txt
appendfile compgen -g > /var/opt/BESClient/groups.txt
appendfile /usr/bin/getent passwd | awk -F ':' {{'print $1'} | xargs -I {{} groups {{} | sed 's/ : /:/g' | tr ' ' ',' > /var/opt/BESClient/group_membership.txt
appendfile /usr/bin/getent passwd {{1000..60000} > /var/opt/BESClient/local_users.txt
copy __appendfile run.sh
wait sh run.sh
bkone
May 20, 2019, 12:42pm
12
I did get this working now. Syntax who would have thought.
Thanks again!
