...
The settings detailed here are used across all Opmantek commercial applications.
You may need to restart the omkd daemon / service after making changes to these items.
Application specific configuration items can be found under the wiki space for the given application.
...
...
...
Common Settings to Consider Adjusting
You will need to change the email settings to that of your email server.
Authentication
...
The file these settings are stored in is (Linux) /usr/local/omk/conf/opCommon.nmis and (Windows, Open-AudIT) c:\omk\conf\opCommon.nmis.
The settings are common to all Opmantek commercial applications.
Section | Name | Original Value | Possible Values | Description | |
---|---|---|---|---|---|
authentication | auth_crowd_password | <password> | |||
authentication | auth_crowd_server | <ip> | |||
authentication | auth_crowd_user | <username> | |||
authentication | auth_expire_seconds | 3600 | <integer> | ||
authentication | auth_htpasswd_encrypt | crypt | crypt, plaintext, apache-md5 | ||
authentication | auth_htpasswd_file | <omk_conf>/users.dat | <relative filepath> | ||
authentication | auth_lockout_after | 0 | <integer> | seconds, 0 for none. | |
authentication | auth_login_motd | Authentication required: default credentials are nmis/nm1888 | |||
authentication | auth_method_1 | htpasswd | htpasswd, openaudit, radias, tacacs, crowd, system, ldaps, ldap, ms-ldap, ms-ldaps, novell-ldap, connectwise, pam, openid_connect | openid_connect supported as at April 2021. See below. | |
authentication | auth_method_2 | htpasswd, openaudit, radias, tacacs, crowd, system, ldaps, ldap, ms-ldap, ms-ldaps, novell-ldap, connectwise, pam, openid_connect | |||
authentication | auth_method_3 | htpasswd, openaudit, radias, tacacs, crowd, system, ldaps, ldap, ms-ldap, ms-ldaps, novell-ldap, connectwise, pam, openid_connect | |||
authentication | auth_ms_ldap_attr | sAMAccountName | |||
authentication | auth_ms_ldap_base | CN=Users,DC=your_domain,DC=com | <ldap> | ||
authentication | auth_ms_ldap_debug | true | true, false | ||
authentication | auth_ms_ldap_dn_acc | CN=Administrator,CN=Users,DC=your_domain,DC=com | |||
authentication | auth_ms_ldap_dn_psw | your_administrator_password | <password> | ||
authentication | auth_ms_ldap_group | CN=Users,DC=your_domain,DC=com | <ldap> | ||
authentication | auth_ms_ldap_server | your.ip.address.here | <ip> | ||
authentication | auth_ms_ldaps_capath | required | |||
authentication | auth_ms_ldaps_server | your.ip.address.here | <ip> | ||
authentication | auth_ms_ldaps_verify | ||||
authentication | auth_sso_domain | <domain> |
OKTA OpenID specific
Section | Name | Original Value | Possible Values | Description | |
---|---|---|---|---|---|
authentication | auth_method_1 | openid_connect | Set as per this entry to enable. | ||
authentication → auth_openid_connect | type | okta | As at April 2021, only OKTA is tested and supported | ||
authentication → auth_openid_connect | url | https://YOUR_SUBDOMAIN.okta.com/oauth2/default/v1/token | You should replace YOUR_SUBDOMAIN with the subdomain provided by OKTA. | ||
authentication → auth_openid_connect | password | password | OKTA specific (do not change). | ||
authentication → auth_openid_connect | test_error | error_description | OKTA specific (do not change). | ||
authentication → auth_openid_connect | test_success | access_token | OKTA specific (do not change). | ||
authentication → auth_openid_connect | username | username | OKTA specific (do not change). | ||
authentication → auth_openid_connect → post | client_id | YOUR_CLIENT_ID | You should replace YOUR_CLIENT_ID with the client id provided by OKTA. | ||
authentication → auth_openid_connect → post | client_secret | YOUR_CLIENT_SECRET | You should replace YOUR_CLIENT_SECRET with the client secret provided by OKTA. | ||
authentication → auth_openid_connect → post | grant_type | password | OKTA specific (do not change). | ||
authentication → auth_openid_connect → post | scope | openid | OKTA specific (do not change). | ||
authentication → auth_openid_connect → post | password | Do not set. | |||
authentication → auth_openid_connect → post | username | Do not set. | |||
authentication → auth_openid_connect → headers | accept | application/json | OKTA specific (do not change). | ||
authentication → auth_openid_connect → headers | content_type | application/x-www-form-urlencoded | OKTA specific (do not change). |
Core
Some core web application settings.
...
Section | Name | Original Value | Possible Values | Description | ||||
---|---|---|---|---|---|---|---|---|
mail_domain | yourdomain.com | <domain> | ||||||
mail_from | yourmailname@yourdomain.com | <email> | ||||||
mail_passwordyour_password | <password> | mail_server | smtp.yourdomain.com | <fqdn> | ||||
mail_server_port | 25 | <integer> | ||||||
mail_subject_prefix | [automatic] | |||||||
mail_use_tls | true | true, false | ||||||
mail_user | your_user_account@your_domain.com | <username> | Used for SMTP authentication. Leave empty to skip authentication | |||||
mail_password | your_password | <password> | Used for SMTP authentication. Leave empty to skip authentication |
Icons
Section | Name | Original Value | Possible Values | Description | |
---|---|---|---|---|---|
icons | alert_critical | <omk_url_base>/icons/alert_critical.png | <relative filepath> | ||
icons | alert_degraded | <omk_url_base>/icons/alert_warning.png | <relative filepath> | ||
icons | alert_fatal | <omk_url_base>/icons/alert_critical.png | <relative filepath> | ||
icons | alert_major | <omk_url_base>/icons/alert_major.png | <relative filepath> | ||
icons | alert_minor | <omk_url_base>/icons/alert_minor.png | <relative filepath> | ||
icons | alert_normal | <omk_url_base>/icons/alert_normal.png | <relative filepath> | ||
icons | alert_reachable | <omk_url_base>/icons/alert_normal.png | <relative filepath> | ||
icons | alert_unknown | <omk_url_base>/icons/alert_unknown.png | <relative filepath> | ||
icons | alert_unreachable | <omk_url_base>/icons/alert_critical.png | <relative filepath> | ||
icons | alert_warning | <omk_url_base>/icons/alert_warning.png | <relative filepath> |
...