Reference: Tanium Client CLI
Tanium Client 7.2 or later provides a command-line interface (CLI) that you use to view and change client settings.
Do not run the CLI commands on Tanium Client 6.0 endpoints. Issuing a CLI command on Tanium Client 6.0 endpoints starts an additional TaniumClient process that cannot be resolved, produces numerous Tanium Client log errors, and consumes resources for each command that is run.
CLI on Windows endpoints
On Windows, Tanium Client settings are written to the Windows Registry. TaniumClient.exe is the executable program. It is in the Tanium Client installation directory (see Tanium Client installation paths). The following are examples of useful CLI commands.
- Display the TaniumClient.exe syntax, commands, and options: TaniumClient --help
- Display the configuration (config) command syntax and actions: TaniumClient config --help
- Display the current configuration settings: TaniumClient config list
The following example shows how to set and confirm the FQDNs of the Tanium Servers that the Tanium Client connects to in a high availability (HA) deployment:
cmd-prompt> TaniumClient config set ServerNameList ts1.tam.local,ts2.tam.local
cmd-prompt> TaniumClient config get ServerNameList
ts1.tam.local,ts2.tam.local
The following example shows how to set and confirm optional TLS for the connection from the Tanium Client to the Tanium Server:
cmd-prompt> TaniumClient config set ReportingTLSMode 2
cmd-prompt> TaniumClient config get ReportingTLSMode
2
CLI on Non-Windows endpoints
Tanium Client 7.2 settings are written to an SQLite database instead of the TaniumClient.ini file. The TaniumClient service command is the executable program. It is in the Tanium Client installation directory (see Tanium Client installation paths). You can run it as root or use sudo to elevate permissions. The following are examples of useful CLI commands:
- Display the TaniumClient.exe syntax, commands, and options: sudo ./TaniumClient --help
- Display the configuration (config) command syntax and actions: sudo ./TaniumClient config -h
- Display the current configuration settings: sudo ./TaniumClient config list
The following example shows how to set and confirm the FQDNs of the Tanium Servers that the Tanium Client connects to in a high availability (HA) deployment:
cmd-prompt> sudo ./TaniumClient config set ServerNameList ts1.tam.local,ts2.tam.local
cmd-prompt> sudo ./TaniumClient config get ServerNameList
ts1.tam.local,ts2.tam.local
The following example shows how to set and confirm optional TLS for the connection from the Tanium Client to the Tanium Server:
cmd-prompt> sudo ./TaniumClient config set ReportingTLSMode 2
cmd-prompt> sudo ./TaniumClient config get ReportingTLSMode
2
Last updated: 6/30/2020 4:27 PM | Feedback