Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Requirements

The individual performing this installation has some Linux experience.
Root level server access.
Pre-requisites are installed as per the RedHat/CentOS or Debian/Ubuntu guides.

NOTE - This guide is for a new install of Open-AudIT. If you wish to upgrade an existing installation, see the Linux - Upgrading (old pre v1.3.1) guide.

...

This will be required later, so make a note of it now.

Install Steps

All local commands should be run as root.

...

The file will now likely be in the users home directory.

Change into the /usr/local directory.
Code Block
languagebash
cd /usr/local
Untar the file.
Code Block
languagebash
tar xvf ~/OAE-Linux-x86_64-1.0.5.tar.gz
Fix the file ownership and permissions.
Code Block
languagebash
cd /usr/local
chown -R root:root omk
chmod -R 700 omk
chmod  755 omk/log
 
find /usr/local/open-audit -type f -print0 | xargs -0 chmod 664
find /usr/local/open-audit -type d -print0 | xargs -0 chmod 755 
chmod 770 /usr/local/open-audit/other/*.sh
chmod 666 /usr/local/open-audit/other/open-audit.log
chmod -R 777 /usr/local/open-audit/code_igniter/application/uploads
Change permissions
Section
Column
width40%

for Debian / Ubuntu

Code Block
languagebash
chown -R root:www-data /usr/local/open-audit

 

Column
width40%

for RedHat / CentOS

Code Block
languagebash
chown -R root:apache /usr/local/open-audit 

Install the Daemon

Copy the daemon startup script.
Code Block
languagebash
cp /usr/local/omk/install/omkd.init.d /etc/init.d/omkd
Edit the start up script 
Section
Column
width40%

for Debian / Ubuntu

You need to comment out the lines (nano /etc/init.d/omkd)

Code Block
languagebash
. /etc/init.d/functions     # RedHat/CentOS only
 
lockfile=/var/lock/subsys/$prog     # RedHat/CentOS only

        killproc $prog           # Redhat/CentOS only

and uncomment (remove the # from the front of the line) the lines below them

Code Block
languagebash
# . /lib/lsb/init-functions # Debian/Ubuntu only
 
# lockfile=/var/lock/$prog           # Debian/Ubuntu only
 
        #pkill $prog              # Debian/Ubuntu only 
Column
width40%

for RedHat / CentOS - nothing required.

Add the daemon

Section
Column
width40%

For Debian / Ubuntu

Code Block
languagebash
update-rc.d omkd start 20 2 3 4 5 . stop 20 0 1 6 . 
Column
width40%

For RedHat / CentOS

Code Block
languagebash
chkconfig --add omkd 
Copy the config files.
Code Block
languagebash
cd /usr/local/omk/install
cp users.dat oae_reports.json opCommon.nmis opModules.nmis ../conf

Edit the config files.

Set omkd_require_nmis to 'false' if you do not have NMIS installed on this server.

...

The email section is described in the Open-AudIT Enterprise - Configuration Guide document.

Set the permissions to writeable.
Code Block
languagebash
chmod -R 755 /usr/local/omk/conf 
Create the nmis user. 
Code Block
languagebash
useradd nmis
Start the daemon.
Code Block
languagebash
service omkd start

Configure Apache

Copy the apache config file to the correct location and restart apache.

Section
Column
width40%

for Debian / Ubuntu:

Code Block
languagebash
cp /usr/local/omk/install/04omk-proxy.conf /etc/apache2/conf.d/
 
service apache2 restart  
Column
width40%

for RedHat / CentOS:

Code Block
languagebash
cp /usr/local/omk/install/04omk-proxy.conf /etc/httpd/conf.d/
 
service httpd restart 

Copy the required files into the webroot

Section
Column
width30%

for Debian / Ubuntu (prior to 14.04)

Code Block
languagebash
cp -r /usr/local/open-audit/www/* /var/www/
chown -R root:www-data /var/www
chmod -R 755 /var/www 
Column
width30%

for Ubuntu 14.04

Code Block
languagebash
cp -r /usr/local/open-audit/www/* /var/www/html/
chown -R root:www-data /var/www/html
chmod -R 755 /var/www/html
Column
width30%

for RedHat / CentOS

Code Block
languagebash
cp -r /usr/local/open-audit/www/* /var/www/html/
chown -R root:apache /var/www/html
chmod -R 755 /var/www/html 

...

and check the lines that specify the $system_path and $application_folder. There are two lines for each variable. Ensure the windows paths are commented out by placing a # at the start of the line. The linux paths should correspond to /usr/local/open-audit/code_igniter/ (system or application).

Configure MySQL

  • The root password for MySQL needs to be set next; if you have used mysql_secure_installation or mysqladmin before to set the  password, then you can skip this step.

    In the command below replace the token PASSWORD (and only the all-uppercase token PASSWORD) with a suitable password of your choosing.

...

Code Block
languagebash
mysql -u root -pPASSWORD openaudit < /usr/local/open-audit/other/openaudit_mysql.sql

Test the Website

You should now be able to access the web page at http://IPADDRESS/open-audit/index.php Assuming you can, proceed to the next section.

Enter Your License

Go to the URL http://<server>/omk/oae/
Enter the default credentials of nmis and nm1888.
Click the "View and enter licenses" button.
Click "Enter a license key".
Paste your license key text into the text box and click "Add License".
You should see a message at the top of the screen saying "Success: You have added a license for Open-AudIT Enterprise."
Close the browser tab.
Click the "License Entered, Continue" button.
Accept the End User License Agreement.
You should now see the Open-AudIT Enterprise dashboard.

Log in to Open-AudIT Enterprise

Go to the URL http://IPADDRESS/omk/oae

Log in to Open-AudIT

Go to the URL http://IPADDRESS/open-audit/index.php 

If you don't have a valid license, you should be able to log in to Open-AudIT at http://IPADDRESS/open-audit/index.php/login/index/main/list_groups

Modify your Audit Scripts

If you have installed Open-AudIT into a sub directory on your webserver, you must alter the audit scripts to submit to the correct URL, which means the URL needs to include this sub directory.. The files that need to be modified are all in /usr/local/open-audit/other and are named

...