Requirements
The individual performing this installation has some Linux experience.
Root level server access.
Pre-requisites are installed as per the RedHat/CentOS or Debian/Ubuntu guides.
...
This will be required later, so make a note of it now.
Install Steps
All local commands should be run as root.
...
The file will now likely be in the users home directory.
Change into the /usr/local directory.
Untar the file.
Code Block |
---|
|
tar xvf ~/OAE-Linux-x86_64-1.0.5.tar.gz |
Fix the file ownership and permissions.
Code Block |
---|
|
chown -R root:root omk
chmod -R 700 /usr/local/omk
chmod -R 755 /usr/local/omk/log
chmod -R 770 /usr/local/open-audit
chmod -R 777 /usr/local/open-audit/code_igniter/application/views/lang/
chmod 770 /usr/local/open-audit/other/audit_linux.sh
chmod 770 /usr/local/open-audit/other/audit_subnet.sh
chmod 660 /usr/local/open-audit/other/open-audit.log |
Change permissions
Section |
---|
Column |
---|
| for Debian / Ubuntu Code Block |
---|
| chown -R root:www-data /usr/local/open-audit |
|
Column |
---|
| for RedHat / CentOS Code Block |
---|
| chown -R root:apache /usr/local/open-audit |
|
|
Install the Daemon
Copy the daemon startup script.
Code Block |
---|
|
cp /usr/local/omk/install/omkd.init.d /etc/init.d/omkd |
Edit the start up script
Section |
---|
Column |
---|
| for Debian / Ubuntu You need to comment out the lines (nano /etc/init.d/omkd) Code Block |
---|
| . /etc/init.d/functions # RedHat/CentOS only
lockfile=/var/lock/subsys/$prog # RedHat/CentOS only
killproc $prog # Redhat/CentOS only |
and uncomment (remove the # from the front of the line) the lines below them Code Block |
---|
| # . /lib/lsb/init-functions # Debian/Ubuntu only
# lockfile=/var/lock/$prog # Debian/Ubuntu only
#pkill $prog # Debian/Ubuntu only |
|
Column |
---|
| for RedHat / CentOS - nothing required. |
|
Add the daemon
Section |
---|
Column |
---|
| For Debian / Ubuntu Code Block |
---|
| update-rc.d omkd start 20 2 3 4 5 . stop 20 0 1 6 . |
|
Column |
---|
| For RedHat / CentOS Code Block |
---|
| chkconfig --add omkd |
|
|
Copy the config files.
Code Block |
---|
|
cp /usr/local/omk/install/users.dat /usr/local/omk/conf/
cp /usr/local/omk/install/oae_reports.json /usr/local/omk/conf/
cp /usr/local/omk/install/opCommon.nmis /usr/local/omk/conf/
cp /usr/local/omk/install/opModules.nmis /usr/local/omk/conf/ |
Edit the config files.
Make sure you set both oae_server and oae_link. They will likely be the same address.
...
The email section is described in the Open-AudIT Enterprise - Configuration Guide document.
Set the permissions to writeable.
Code Block |
---|
|
chmod -R 755 /usr/local/omk/conf |
Create the nmis user.
Start the daemon.
Code Block |
---|
|
service omkd start |
Test the daemon
You should now be able to point a web browser at http://SERVER:8042/omk/oae
The default credentials for the Dashboard are user: nmis, password: nm1888.
Copy the apache config file to the correct location and restart apache.
Section |
---|
Column |
---|
| for Debian / Ubuntu: Code Block |
---|
| cp /usr/local/omk/install/04omk-proxy.conf /etc/apache2/conf.d/
service apache2 restart |
|
Column |
---|
| for RedHat / CentOS: Code Block |
---|
| cp /usr/local/omk/install/04omk-proxy.conf /etc/httpd/conf.d/
service httpd restart |
|
|
Copy the required files into the webroot
Section |
---|
Column |
---|
| for Debian / Ubuntu Code Block |
---|
| cp -r /usr/local/open-audit/www/* /var/www/
chown -R root:www-data /var/www
chmod -R 755 /var/www |
|
Column |
---|
| for RedHat / CentOS Code Block |
---|
| cp -r /usr/local/open-audit/www/* /var/www/html/
chown -R root:apache /var/www/html
chmod -R 755 /var/www/html |
|
|
...
Edit /var/www/index.php (for Debian/Ubuntu) or /var/www/html/index.php (for RedHat/CentOS) and check the lines that specify the $system_path and $application_folder. There are two lines for each variable. Ensure the windows paths are commented out by placing a # at the start of the line. The linux paths should correspond to /usr/local/open-audit/code_igniter/ (system or application).
Remove index.html
The index.html file (if it exists) in the webroot is not required.
Section |
---|
Column |
---|
| for Debian / Ubuntu Code Block |
---|
| rm /var/www/index.html |
|
Column |
---|
| for RedHat / CentOS Code Block |
---|
| rm /var/www/html/index.html |
|
|
If you have not already, set the root password for MySQL.
...
Code Block |
---|
|
mysql -u root -popenauditrootuserpassword -e "USE openaudit; DELETE FROM oa_config WHERE config_name = 'maps_url'; INSERT INTO oa_config (config_name, config_value, config_editable, config_description) VALUES ('maps_url', 'http://IPADDRESS/omk/oae/map', 'y', 'The web server address of Maps for Open-AudIT Enterprise.');"
mysql -u root -popenauditrootuserpassword -e "USE openaudit; DELETE FROM oa_config WHERE config_name = 'oae_url'; INSERT INTO oa_config (config_name, config_value, config_editable, config_description) VALUES ('oae_url', 'http://IPADDRESS/omk/oae', 'y', 'The web server address of Open-AudIT Enterprise.');" |
Test the Website
You should now be able to access the web page at http://IPADDRESS/index.php Assuming you can, proceed to the next section.
Enter Your License
Go to the URL http://<server>/omk/oae/
Enter the default credentials of nmis and nm1888.
Click the "View and enter licenses" button.
Click "Enter a license key".
Paste your license key text into the text box and click "Add License".
You should see a message at the top of the screen saying "Success: You have added a license for Open-AudIT Enterprise."
Close the browser tab.
Click the "License Entered, Continue" button.
Accept the End User License Agreement.
You should now see the Open-AudIT Enterprise dashboard.
Log in to Open-AudIT Enterprise
Go to the URL http://IPADDRESS/omk/oae
Log in to Open-AudIT
Go to the URL http://IPADDRESS/index.php/login/index/main/list_groups
If you don't have a valid license, you should be able to log in to Open-AudIT at http://IPADDRESS/index.php
Modify your Audit Scripts
If you have installed Open-AudIT into a sub directory on your webserver, you must alter the audit scripts to submit to this sub directory as well. The files that need to be modified are all in /usr/local/open-audit/other and are named
...