additional features

[Ryan Snyder]

Graham,

  First off we really like SAL. But there are a few things that would be nice to be added. 

1. Add ability to add or remove different columns from the search pages.

2. Noticed that you can delete business units but not the machine groups. Can that be added?

3. Can create API key but can't delete key. 

Thanks,

   Ryan

[Graham Gilbert]

Hi Ryan,

First off, it's Sal not SAL - it's not an acronym, rather a name :) (Sorry, that's my pet peeve at work)

1. I've thought about it, but can't think of a good way to do this. I'll think about this more and see if it can be worked into a release in the new year, but in the mean time I would gladly accept pull requests for this. 

2. That's a bug. I'll file an issue on github and try to get it fixed before the next release.

3. Not without re-writing the API extensively. And what use would preventing deletion when someone could still update a record with garbage data? I would say it would be more useful (and easier to implement) to have read write and re-only keys (restricted to GET actions) - thoughts?

Cheers,

Graham

--
You received this message because you are subscribed to the Google Groups "sal-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to sal-discuss...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[Allister Banks]

Hey Ryan,

I'm thinking for #3 you meant delete an API key. You can do so with the X icon next to API KEY in the sidebar, we'll get that added to the FAQ at some point, I also found that a non-intuitive bit of GUI.

Allister

[Ryan Snyder]

Allister,

  

  I updated to the latest build and noticed that the delete API key was there.  So another question in the settings area, what does the data retention do exactly? We did have Sal sending machine info to web help desk. But we had problems where we changed the status of the machine and sal would sync and change it back. The machines were basically retired but still in Sal. Thinking that maybe we could use that option in Sal. 

Ryan

[Nick McSpadden]

That's more of an issue related to your Sal -> WHD sync. If you are telling WHD to always sync Sal data and replace existing settings with the values in Sal, then it's doing exactly what you told it to. If you do not want to overwrite the status fields in WHD, then you should configure WHD not to overwrite them when it syncs with Sal.

That behavior isn't really related to Sal specifically.

--
Nick McSpadden
nmcsp...@gmail.com

[Graham Gilbert]

That setting does exactly what it says - the number of days historical facts and osquery reports are kept. Your script that syncs would need to look at the last check in date I think to stop that happening. I remove old machines via the api in a similar manner. 

Sent from my iPhone