wiki

User Tools

Site Tools

Trace: ibm_bigfix_install
deploy:ibm_bigfix_install

This is an old revision of the document!

Table of Contents

IBM BigFix

IBM Bigfix also known as TEM (Tivoli EndPoint Manager), IEM (IBM EndPoint Manager)

BigFix installation

First install Redhat (also supported on Windows) 

/var/opt/BESServer  20GB
/var/opt/BESWebReportsServer  3GB
/home/db2inst1  30GB                 # DB2 home dir and DB
/opt 2G
/opt/ibm/LMT  2GB
/opt/ibm/db2  4GB   # DB2 bin
/opt/BESWebUI 1GB 
/backup  20GB

CLI

https://developer.bigfix.com/rest-api/iem_cli/iem_samples.html

Ex: command line 

[root@BIGFIXSRV]# /opt/BESServer/bin/iem login --server=10.10.10.137:52311 --user=IEMAdmin --password=password
Server  : 10.10.10.137:52311
User    : IEMAdmin

The security certificate used by 10.10.10.137 is not trusted. Do you want to trust security certificates signed by IBM_Endpoint_Manager when connecting to 10.10.10.137?[Y/N]: Y
Successfully logged in to server!
[root@BIGFIXSRV]# /opt/BESServer/bin/iem get help
/api/action
/api/actions
/api/admin
/api/analyses
/api/analysis
/api/authenticate
/api/clientquery
/api/clientqueryresults
/api/computer
/api/computergroup
/api/computergroups
/api/computers
/api/dashboardvariable
/api/dashboardvariables
/api/fixlet
/api/fixlets
/api/help
/api/import
/api/ldapdirectories
/api/ldapdirectory
/api/login
/api/mailbox
/api/operator
/api/operators
/api/properties
/api/property
/api/query
/api/replication
/api/role
/api/roles
/api/samlprovider
/api/samlproviders
/api/serverinfo
/api/session
/api/site
/api/sites
/api/task
/api/tasks
/api/upload
/api/uploads
/api/webreports
/api/webui-app
/api/webui-apps
/api/webui-content-upgrade-status
/api/webui-sites
/api/webui-using-local-config
/api/webui-variables
[root@BIGFIXSRV]# /opt/BESServer/bin/iem  get ldapdirectories
<?xml version="1.0" encoding="UTF-8"?>
<BESAPI xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="BESAPI.xsd">
        <LDAPDirectory Resource="https://10.10.10.137:52311/api/ldapdirectory/140">
                <ID>140</ID>
                <Name>My LDAP Server</Name>
                <IsActiveDirectory>false</IsActiveDirectory>
                <UseSSL>true</UseSSL>
                <BaseDN>dc=mydom,dc=tst</BaseDN>
                <UIDAttribute>uid</UIDAttribute>
                <UserFilter>(objectClass=account)</UserFilter>
                <GroupFilter>(objectClass=organizationalUnit)</GroupFilter>
                <User>cn=Manager,dc=mydom,dc=tst</User>
                <Servers>
                        <Server>
                                <Host>10.10.10.11</Host>
                                <Port>636</Port>
                                <Priority>0</Priority>
                        </Server>
                </Servers>
        </LDAPDirectory>
</BESAPI>

QNA

Optional you can install for windows only “Session Relevance Editor” 

https://www.ibm.com/developerworks/community/wikis/home?lang=en#!/wiki/Tivoli%20Endpoint%20Manager/page/Session%20Relevance%20Editor

Fixlet Debugger can be used to extract informations: 

[root@BIGFIXSRV]# /opt/BESClient/bin/qna
Default masthead location, using /etc/opt/BESClient/actionsite.afxm

Q: total space of filesystem "/opt"
A: 1023303680
T: 318

Q: properties of type "filesystem"
A: name of <filesystem>: string
A: volume of <filesystem>: string
A: size of <filesystem>: integer
A: total space of <filesystem>: integer
A: free space of <filesystem>: integer
A: used space of <filesystem>: integer
A: free percent of <filesystem>: integer
A: used percent of <filesystem>: integer
A: file count of <filesystem>: integer
A: free file count of <filesystem>: integer
A: used file count of <filesystem>: integer
A: type of <filesystem>: string
A: mount point of <filesystem>: string
A: device name of <filesystem>: string
A: fstype of <filesystem>: string
A: filesystem type of <filesystem>: string
A: mount option of <filesystem>: string
A: block size of <filesystem>: integer
A: uuid of <filesystem>: string
T: 7209

Q: lines whose (it as lowercase contains "root") of file "/etc/security/limits"
E: Singular expression refers to nonexistent object.
T: 228

Q: exists filesystem "/var"
A: True
T: 7531

Q: lines whose (it as lowercase contains "root") of file "/etc/security/limits"
E: Singular expression refers to nonexistent object.
T: 302

Q: names of sites
A: BES Asset Discovery
A: BES Inventory and License
A: BES Support
A: BigFix Labs
A: IBM License Reporting
A: Patches for RHEL 7
A: Patching Support
A: Server Automation
A: Software Distribution
A: actionsite
A: mailboxsite
A: opsite10
T: 3046

Q: type of site whose (name of it is "BES Support")
A: Fixlet Site
T: 4690

Q: (name of it, type of it, version of it) of sites
A: BES Asset Discovery, Fixlet Site, 96
A: BES Inventory and License, Fixlet Site, 179
A: BES Support, Fixlet Site, 1301
A: BigFix Labs, Fixlet Site, 51
A: IBM License Reporting, Fixlet Site, 94
A: Patches for RHEL 7, Fixlet Site, 132
A: Patching Support, Fixlet Site, 720
A: Server Automation, Fixlet Site, 65
A: Software Distribution, Fixlet Site, 77
A: actionsite, Master Action Site, 92
A: mailboxsite, Mailbox Site, 0
A: opsite10, Operator Site, 1
T: 499

BigFix diagnistic 

https://<bigfix_server>:52311/rd

BigFix help for CLI (command line) 

https://<bigfix_server>:52311/api/help

Example BigFix help for CLI 

# List all ID computers
https://<bigfix_server>:52311/api/computers
# Detail info about a computer
https://<bigfix_server>:52311/api/computer/4194896
deploy/ibm_bigfix_install.1640614011.txt.gz · Last modified: 2021/12/27 15:06 by manu

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
GNU Free Documentation License 1.3 Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki