Hi Orlando,
This probably strays a little outside the core expertise of Resilient forum, but something like this might work?:
(name of operating system as lowercase starts with "win")AND (exists files whose (name of it as lowercase contains "tomcat.txt") of folders (system folder; windows folder; folder “C:\Program Files”; folders of system folder)
You might also find some more information here:
- https://developer.bigfix.com/relevance/guide/client/files.html
I note that it mentions:
"On Windows systems you can use the predefined keywords windows folder and system folder that return a folder object corresponding to the windows or system folder. Because these folders are located in different locations for different operating systems, these commands are very useful."
...so perhaps adding the (name of operating system as lowercase starts with "win")
clause will ensure that the relevance will only be evaluated on windows machines and therefore should support the windows folder and system folder keywords?
------------------------------
PAUL CURRAN
------------------------------
Original Message:
Sent: Wed August 14, 2019 04:05 PM
From: Orlando Vazquez
Subject: BigFix Analysis
How do I create a BigFix analysis for the following:
I need to search entire hard drive [c:] on several computers [Windows] for a specific file name associated with and an application that could exist in different directories. Just looking for a 'True or False' output value.
I used this relevance for the analysis:
exists descendant whose (name of it = "tomcat.txt") of (windows folder; folder "C:\Program Files"; folders of system folder)
But doesn't work and the online 'Evaluate Relevance' errors with 'The operator "windows folder" is not defined.'
Having trouble getting it to work, any assistance would be greatly appreciated.
Regards,
------------------------------
Orlando
------------------------------