Closed fasdrubalpsg closed 1 month ago
fasdrubalpsg
commented
2 months ago well ... just regenerated my execution environnement (upgraded all elements, included python, wheel, ect) ... added in my inventory vars localhost ansible_connection=local ... and now it's working. don't really understand what did the trick ...
carlosmmatos
commented
2 months ago @fasdrubalpsg generally the above issue is related to the task trying to run on the localhost executing the playbook such as an execution env:
From the image - it looks like that host executing the script was also part of the inventory run ( which it sounds like you configured the localhost stuff correctly now to prevent that from happening ).
I don't know all the specifics around what version you upgraded from or what not, but not much has changed from the falconct module - so hopefully this was just an isolated issue and I'm happy to hear it's working for you now! 👊🏼
vikas-falconx
commented
2 months ago Having the same issue, everything was working so far and i didn't update anything in my execution environment. I am on 4.5.1 Is there any fix for this. This is a blocker for us
carlosmmatos
commented
2 months ago @vikas-falconx - just trying to better understand and there hasn't been any updates since june 28th to this collection. Are you saying that this was working for you on 4.5.1 until recently? Can you provide more details on the execution environment (ie ansible-core version etc)? Does it work on 4.5.0? What OS are you seeing the issue on (all of them or certain ones)? Just trying to get a better understanding as I said, not much has changed in a little bit.
vikas-falconx
commented
2 months ago This issue has started happening recently, we have not changed anything on our end. We are using ubuntu 22.04 with ansible-core>=2.15
evanstoner
commented
2 months ago @vikas-falconx Can you run falconctl manually (as root), e.g. /opt/CrowdStrike/falconctl -g --version?
Please also paste in your exact error output and Ansible version. Thanks!
carlosmmatos
commented
2 months ago @vikas-falconx I just noticed that you are running the falconctl module without becoming root, can you try either of the following:
Recommended Way:
- name: CROWDSTRIKE FALCON
hosts: all,!localhost
vars:
falcon_client_id: <my ID>
falcon_client_secret: <My Secret>
falcon_api_enable_no_log: false
roles:
- role: crowdstrike.falcon.falcon_install
vars:
falcon_sensor_version_decrement: 1
falcon_api_enable_no_log: false
- role: crowdstrike.falcon.falcon_configure
vars:
falcon_cid: "<My CID>"Same w/ become:
- name: CROWDSTRIKE FALCON
hosts: all,!localhost
vars:
falcon_client_id: <my ID>
falcon_client_secret: <My Secret>
falcon_api_enable_no_log: false
falcon_cid: "<My CID>"
roles:
- role: crowdstrike.falcon.falcon_install
vars:
falcon_sensor_version_decrement: 1
falcon_api_enable_no_log: false
tasks:
- name: configure falconctl
crowdstrike.falcon.falconctl:
state: present
cid: "<My CID>"
become: true
- name: start falcon sensor service
service:
name: falcon-sensor
enabled: True
state: started
become: trueJust checking in to see if this has been resolved for you. If so could you please close the issue? Otherwise I will close it in a few days.
Hello,
Just updated my crowdstrike falcon collection because of the GPG issue, but now i have an error : My playbook :
My environement :
the error is :
Did I make a mistake somewhere? It was working before the collection upgrade. Thanks for the help. Regards.
edit: I tried to add /opt/crowdstrike to the global PATH, but it didn't change anything.
edit 2 : all my systems are running on rhel 8.x