Below are the default values for the configuration of Open-AudIT. These can all be changed to work as you desire.
Name | Default Value | Description |
---|---|---|
The domain name against which your users will validate to log on to Open-AudIT. EG - open-audit.org | ||
The IP Address of the domain controller your users will validate to log to Open-AudIT. EG - 192.168.0.1 | ||
create_alerts | y | Should Open-AudIT create an entry in the alert table if a change is detected. |
default_ipmi_password | The default ipmi password (Linux only). | |
default_ipmi_username | The default ipmi username (Linux only). | |
The ip address or resolvable hostname used by external devices to talk to Open-AudIT. EG - my-server.com | ||
The default community string Open-AudIT will use when connecting to a new device. EG - public | ||
The default password used by Open-AudIT to audit devices via SSH. | ||
The default username used by Open-AudIT to audit devices via SSH. | ||
The default active directory domain used by Open-AudIT to audit Windows PCs. | ||
The default password used by Open-AudIT to audit Windows PCs. | ||
The default username used by Open-AudIT to audit Windows PCs. | ||
discovery_ip_match | y | Should we match a device based only on its ip during discovery. |
discovery_mac_match | n | Should we match a device based only on its mac address during discovery. |
discovery_name_match | y | Should we match a device based only on its hostname during discovery. |
discovery_use_ipmi | y | Should we use ipmitool for discovering management ports if ipmitool is installed. |
y | Display Groups on the homepage, separated into the type of each Group. A separate table of Groups will be placed on the homepage per Group Type. | |
download_reports | download | Download or display in the browser any generated report files. Valid values are 'download' and 'display'. |
log_level | 5 | The logging level. All values below this level will be logged. Valid values are 1-7 with 7 being the most verbose (debug level). |
log_style | syslog | The style of logs to be generated. Valid values are 'syslog' and 'json'. syslog should be used as the audit scripts currently report in this style only. |
logo | logo-banner-oae | Use to modify your logo in the web interface. Should be the name of a .png file in /open-audit/theme-tango/tango-images of dimensions 375x60. |
/omk/oae/map | The link to Open-AudIT Enterprise Maps. | |
network_group_auto_create | y | Have Open-AudIT automatically create Groups based on Subnet. (as at 1.6.6) |
network_group_subnet | 30 | If the netmask is equal to or greater than this number, do not create a network group. (as at 1.6.6) |
n | Enable import / export to NMIS functions. | |
The web server address of NMIS. | ||
y | Enable or disable search for non-Administrators | |
oae_license_status | License status of Open-AudIT Enterprise. | |
oae_license_type | The type of license you have for Enterprise. | |
oae_prompt | 2015-06-01 | Prompt to activate a license for Open-AudIT Enterprise. |
/omk/oae | The link to Open-AudIT Enterprise. | |
page_refresh | 300 | Interval in seconds between auto-refreshing the page. Set to 0 to cancel auto-refresh. |
rss_enable | y | Enable the RSS feed on the Open-AudIT homepage. |
rss_url | https://community.opmantek.com/rss/OA.xml | The RSS Feed URL. |
y | Should we show any passwords on forms. | |
y | Should we show the SNMP community string on forms. |
Below are the default values and a description for the configuration of Open-AudIT. These can all be changed to work as you desire.
To change these using the GUI in Open-AudIT navigate to menu -> Admin -> Configuration -> All
Code Block |
---|
| access_token_count | 20 | number | Allow this many access tokens to be stored in the cookie. |
| access_token_enable | y | bool | Should we enable access tokens for CSRF mitigation. |
| blessed_subnets_use | y | bool | Should we only accept data from the blessed subnets list. |
| collector_check_minutes | 5 | number | The default check interval for collectors. |
| create_change_log | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected. |
| create_change_log_bios | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the bios table. |
| create_change_log_disk | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the disk table. |
| create_change_log_dns | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the dns table. |
| create_change_log_file | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the file table. |
| create_change_log_ip | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the ip table. |
| create_change_log_log | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the log table. |
| create_change_log_memory | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the memory table. |
| create_change_log_module | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the module table. |
| create_change_log_monitor | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the monitor table. |
| create_change_log_motherboad | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the motherboard table. |
| create_change_log_netstat | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table. |
| create_change_log_netstat_dynamic | n | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is 49152 or greater. |
| create_change_log_netstat_registered | n | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is in the range of 1024 to 49151. |
| create_change_log_netstat_well_known | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is 1023 or lower. |
| create_change_log_network | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the network table. |
| create_change_log_nmap | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the nmap table. |
| create_change_log_optical | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the optical table. |
| create_change_log_pagefile | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the pagefile table. |
| create_change_log_partition | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the partition table. |
| create_change_log_policy | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the policy table. |
| create_change_log_print_queue | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the print_queue table. |
| create_change_log_processor | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the processor table. |
| create_change_log_route | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the route table. |
| create_change_log_san | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the san table. |
| create_change_log_scsi | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the scsi table. |
| create_change_log_server | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the server table. |
| create_change_log_server_item | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the server_item table. |
| create_change_log_service | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the service table. |
| create_change_log_share | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the share table. |
| create_change_log_software | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the software table. |
| create_change_log_software_key | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the software_key table. |
| create_change_log_sound | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the sound table. |
| create_change_log_task | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the task table. |
| create_change_log_user | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the user table. |
| create_change_log_user_group | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the user_group table. |
| create_change_log_variable | n | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the variable table. |
| create_change_log_video | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the video table. |
| create_change_log_vm | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the vm table. |
| create_change_log_windows | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the windows table. |
| database_show_row_limit | 1000 | number | The limit of rows to show, rather than download when exporting a database table. |
| decrypt_credentials | y | bool | When we display or export credentials, should we decrypt them. |
| default_network_address | http://127.0.0.1./open-audit/ | text | The URL used by external devices to talk to Open-AudIT. |
| delete_noncurrent | n | bool | Should we delete all non-current data. |
| delete_noncurrent_bios | n | bool | Should we delete non-current bios data. |
| delete_noncurrent_disk | n | bool | Should we delete non-current disk data. |
| delete_noncurrent_dns | n | bool | Should we delete non-current dns data. |
| delete_noncurrent_file | n | bool | Should we delete non-current file data. |
| delete_noncurrent_ip | n | bool | Should we delete non-current ip data. |
| delete_noncurrent_log | n | bool | Should we delete non-current log data. |
| delete_noncurrent_memory | n | bool | Should we delete non-current memory data. |
| delete_noncurrent_module | n | bool | Should we delete non-current module data. |
| delete_noncurrent_monitor | n | bool | Should we delete non-current monitor data. |
| delete_noncurrent_motherboard | n | bool | Should we delete non-current motherboard data. |
| delete_noncurrent_netstat | y | bool | Should we delete non-current netstat data. |
| delete_noncurrent_network | n | bool | Should we delete non-current network data. |
| delete_noncurrent_nmap | n | bool | Should we delete non-current nmap data. |
| delete_noncurrent_optical | n | bool | Should we delete non-current optical data. |
| delete_noncurrent_pagefile | n | bool | Should we delete non-current pagefile data. |
| delete_noncurrent_partition | n | bool | Should we delete non-current partition data. |
| delete_noncurrent_policy | n | bool | Should we delete non-current policy data. |
| delete_noncurrent_print_queue | n | bool | Should we delete non-current print_queue data. |
| delete_noncurrent_processor | n | bool | Should we delete non-current processor data. |
| delete_noncurrent_route | n | bool | Should we delete non-current route data. |
| delete_noncurrent_san | n | bool | Should we delete non-current san data. |
| delete_noncurrent_scsi | n | bool | Should we delete non-current scsi data. |
| delete_noncurrent_server | n | bool | Should we delete non-current server data. |
| delete_noncurrent_server_item | n | bool | Should we delete non-current server_item data. |
| delete_noncurrent_service | n | bool | Should we delete non-current service data. |
| delete_noncurrent_share | n | bool | Should we delete non-current share data. |
| delete_noncurrent_software | n | bool | Should we delete non-current software data. |
| delete_noncurrent_software_key | n | bool | Should we delete non-current software_key data. |
| delete_noncurrent_sound | n | bool | Should we delete non-current sound data. |
| delete_noncurrent_task | n | bool | Should we delete non-current task data. |
| delete_noncurrent_user | n | bool | Should we delete non-current user data. |
| delete_noncurrent_user_group | n | bool | Should we delete non-current user_group data. |
| delete_noncurrent_variable | y | bool | Should we delete non-current variable data. |
| delete_noncurrent_video | n | bool | Should we delete non-current video data. |
| delete_noncurrent_vm | n | bool | Should we delete non-current vm data. |
| delete_noncurrent_windows | n | bool | Should we delete non-current windows data. |
| device_auto_delete | n | bool | Should we delete the device data completely from the database when the device status is set to Deleted. |
| discovery_default_scan_option | 1 | number | The default discovery options for Nmap. |
| discovery_ip_exclude | | text | Populate this list with ip addresses to be excluded from discovery. IPs should be separated by a space. |
| discovery_limit | 20 | number | The maximum number of concurrent discoveries we should run. |
| discovery_linux_script_directory | /tmp/ | text | The directory the script is copied into on the target device. |
| discovery_linux_script_permissions | 700 | text | The permissions set on the audit_linux.sh script when it is copied to the target device. |
| discovery_linux_use_sudo | y | bool | When running discovery commands on a Linux target, should we use sudo. |
| discovery_override_nmap | n | bool | Override the detction of Nmap to enable discoveries. |
| discovery_pid | | number | The discovery queue process pid. |
| discovery_route_retrieve_limit | 500 | number | When discovering a device using SNMP, do not retrieve the route table if it contains more than this number of entries. |
| discovery_ssh_timeout | 300 | number | Timeout duration (in seconds) when discovering a device via SSH. |
| discovery_sudo_path | | text | Optional hardcoded path to sudo executable. Comma seperated for multiple paths. |
| discovery_sunos_use_sudo | y | bool | When running discovery commands on a SunOS target, should we use sudo. |
| discovery_use_dns | y | bool | Should we use DNS for looking up the hostname and domain. |
| discovery_use_ipmi | y | bool | Should we use ipmitool for discovering management ports if ipmitool is installed. |
| discovery_use_vintage_service | n | bool | On Windows, use the old way of running discovery with the Apache service account. |
| display_version | 3.3.0 | text | The version shown on the web pages. |
| download_reports | y | bool | Tells Open-AudIT to advise the browser to download as a file or display the csv, xml, json reports. |
| graph_days | 30 | number | The number of days to report on for the Enterprise graphs. |
| gui_trim_characters | 25 | number | When showing a table of information in the web GUI, replace characters greater than this with "...". |
| homepage | groups | text | Any links to the default page should be directed to this endpoint. |
| internal_version | 20191010 | number | The internal numerical version. |
| log_level | 5 | number | Tells Open-AudIT which severity of event (at least) should be logged. |
| log_retain_level_0 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 0. |
| log_retain_level_1 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 1. |
| log_retain_level_2 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 2. |
| log_retain_level_3 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 3. |
| log_retain_level_4 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 4. |
| log_retain_level_5 | 90 | number | Tells Open-AudIT how many days to keep logs with severity 5. |
| log_retain_level_6 | 30 | number | Tells Open-AudIT how many days to keep logs with severity 6. |
| log_retain_level_7 | 7 | number | Tells Open-AudIT how many days to keep logs with severity 7. |
| maps_api_key | | text | The API key for Google Maps. |
| maps_url | /omk/open-audit/map | text | The web server address of opMaps. |
| match_dbus | n | bool | Should we match a device based on its dbus id. |
| match_dns_fqdn | n | bool | Should we match a device based on its DNS fqdn. |
| match_dns_hostname | n | bool | Should we match a device based on its DNS hostname. |
| match_fqdn | y | bool | Should we match a device based on its fqdn. |
| match_hostname | y | bool | Should we match a device based only on its hostname. |
| match_hostname_dbus | y | bool | Should we match a device based on its hostname and dbus id. |
| match_hostname_serial | y | bool | Should we match a device based on its hostname and serial. |
| match_hostname_uuid | y | bool | Should we match a device based on its hostname and UUID. |
| match_ip | n | bool | Should we match a device based on its ip. |
| match_ip_no_data | y | bool | Should we match a device based on its ip if we have an existing device with no data. |
| match_mac | y | bool | Should we match a device based on its mac address. |
| match_mac_vmware | n | bool | Should we match a device based mac address even if its a known likely duplicate from VMware. |
| match_serial | y | bool | Should we match a device based on its serial number. |
| match_serial_type | y | bool | Should we match a device based on its serial and type. |
| match_sysname | y | bool | Should we match a device based only on its SNMP sysName. |
| match_sysname_serial | y | bool | Should we match a device based only on its SNMP sysName and serial. |
| match_uuid | y | bool | Should we match a device based on its UUID. |
| nmis | n | bool | Enable import / export to NMIS functions. |
| nmis_url | | text | The web server address of NMIS. |
| oae_license | | text | License status of Open-AudIT Enterprise. |
| oae_product | | text | The name of the installed commercial application. |
| oae_prompt | 2001-01-01 | date | Prompt to activate a license for Open-AudIT Enterprise. |
| oae_url | /omk/open-audit | text | The web server address of Open-AudIT Enterprise. |
| output_escape_csv | y | bool | Escape CSV output so Excel will not attempt to run contents. |
| page_size | 1000 | number | The default limit of rows to retrieve. |
| process_netstat_windows_dns | n | bool | Should we keep track of Windows netstat ports used by DNS above port 1000. |
| queue_count | 0 | number | The current number of concurrent device scans running. |
| queue_limit | 20 | number | The maximum number of concurrent device scans we should run. |
| rss_enable | y | bool | Enable the RSS feed. |
| rss_url | https://community.opmantek.com/rss/OA.xml | text | The RSS feed URL. |
| servers | | text | The servers to report to when using Agent / Collector / Server. |
| server_ip | | text | The locally detected IP Addresses of this server. |
| uuid | unique per installation | text | The unique identfier of this Open-AudIT server. |