Issue
What are the required Response policies needed for Collect Forensics package to run?
Collect Forensics package fails with "Failed to install osquery; prevented by policy."
Environment
CrowdStrike
Red Canary
Resolution
Please enable the following Response actions:
Type: Real Time Response
Custom Scripts
run
put-and-run
To enable these options, please navigate to "Response Policies":
Comments
0 comments
Please sign in to leave a comment.