search

google / grr

GRR Rapid Response: remote live forensics for incident response
https://grr-doc.readthedocs.io/
Apache License 2.0
4.75k stars 761 forks source link

Feature Request: Enable client installer to accept command line arguments for assigning labels at installation time #1003

Open duckexmachina opened 1 year ago

duckexmachina commented 1 year ago

Environment N/A

Describe the issue Per-client label assignment in the GUI is tedious Assigning labels to hosts at client install requires repacking the clients for every different desired label

Enabling command line arguments for the client installer like:

GRR_3.4.6.0_amd64.exe --label=Incident_2023.43_Smith

could enable more efficient scripted installs

Error logs N/A

Additional context N/A

Karneades commented 12 months ago

Check out https://github.com/swisscom/PowerGRR and especially the command Set-GRRLabel or Remove-GRRLabel, e.g., https://github.com/swisscom/PowerGRR/blob/master/docs/Set-GRRLabel.md which provides a more convenient way of setting labels.

Use $GRRCredential for setting the credentials before running the commands and the parameter -Credential is not needed anymore for each command. See authentication section in readme.

Set-GRRLabel -ComputerName host1, host2 -Label label1

or

 "host1", "host2" | Set-GRRLabel -Label label1

PowerGRR allows to use then only actions against those clients, see examples.