Open-AudIT Default Configuration Values and Description
Below are the default values and a description for the configuration of Open-AudIT. These can all be changed to work as you desire.
To change these using the GUI in Open-AudIT navigate to menu -> Admin -> Configuration -> All
| access_token_count | 20 | number | Allow this many access tokens to be stored in the cookie. | | access_token_enable | y | bool | Should we enable access tokens for CSRF mitigation. | | blessed_subnets_use | y | bool | Should we only accept data from the blessed subnets list. | | collector_check_minutes | 5 | number | The default check interval for collectors. | | create_change_log | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected. | | create_change_log_bios | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the bios table. | | create_change_log_disk | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the disk table. | | create_change_log_dns | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the dns table. | | create_change_log_file | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the file table. | | create_change_log_ip | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the ip table. | | create_change_log_log | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the log table. | | create_change_log_memory | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the memory table. | | create_change_log_module | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the module table. | | create_change_log_monitor | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the monitor table. | | create_change_log_motherboad | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the motherboard table. | | create_change_log_netstat | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table. | | create_change_log_netstat_dynamic | n | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is 49152 or greater. | | create_change_log_netstat_registered | n | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is in the range of 1024 to 49151. | | create_change_log_netstat_well_known | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is 1023 or lower. | | create_change_log_network | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the network table. | | create_change_log_nmap | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the nmap table. | | create_change_log_optical | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the optical table. | | create_change_log_pagefile | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the pagefile table. | | create_change_log_partition | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the partition table. | | create_change_log_policy | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the policy table. | | create_change_log_print_queue | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the print_queue table. | | create_change_log_processor | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the processor table. | | create_change_log_route | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the route table. | | create_change_log_san | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the san table. | | create_change_log_scsi | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the scsi table. | | create_change_log_server | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the server table. | | create_change_log_server_item | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the server_item table. | | create_change_log_service | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the service table. | | create_change_log_share | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the share table. | | create_change_log_software | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the software table. | | create_change_log_software_key | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the software_key table. | | create_change_log_sound | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the sound table. | | create_change_log_task | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the task table. | | create_change_log_user | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the user table. | | create_change_log_user_group | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the user_group table. | | create_change_log_variable | n | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the variable table. | | create_change_log_video | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the video table. | | create_change_log_vm | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the vm table. | | create_change_log_windows | y | bool | Should Open-AudIT create an entry in the change log table if a change is detected in the windows table. | | database_show_row_limit | 1000 | number | The limit of rows to show, rather than download when exporting a database table. | | decrypt_credentials | y | bool | When we display or export credentials, should we decrypt them. | | default_network_address | http://127.0.0.1./open-audit/ | text | The URL used by external devices to talk to Open-AudIT. | | delete_noncurrent | n | bool | Should we delete all non-current data. | | delete_noncurrent_bios | n | bool | Should we delete non-current bios data. | | delete_noncurrent_disk | n | bool | Should we delete non-current disk data. | | delete_noncurrent_dns | n | bool | Should we delete non-current dns data. | | delete_noncurrent_file | n | bool | Should we delete non-current file data. | | delete_noncurrent_ip | n | bool | Should we delete non-current ip data. | | delete_noncurrent_log | n | bool | Should we delete non-current log data. | | delete_noncurrent_memory | n | bool | Should we delete non-current memory data. | | delete_noncurrent_module | n | bool | Should we delete non-current module data. | | delete_noncurrent_monitor | n | bool | Should we delete non-current monitor data. | | delete_noncurrent_motherboard | n | bool | Should we delete non-current motherboard data. | | delete_noncurrent_netstat | y | bool | Should we delete non-current netstat data. | | delete_noncurrent_network | n | bool | Should we delete non-current network data. | | delete_noncurrent_nmap | n | bool | Should we delete non-current nmap data. | | delete_noncurrent_optical | n | bool | Should we delete non-current optical data. | | delete_noncurrent_pagefile | n | bool | Should we delete non-current pagefile data. | | delete_noncurrent_partition | n | bool | Should we delete non-current partition data. | | delete_noncurrent_policy | n | bool | Should we delete non-current policy data. | | delete_noncurrent_print_queue | n | bool | Should we delete non-current print_queue data. | | delete_noncurrent_processor | n | bool | Should we delete non-current processor data. | | delete_noncurrent_route | n | bool | Should we delete non-current route data. | | delete_noncurrent_san | n | bool | Should we delete non-current san data. | | delete_noncurrent_scsi | n | bool | Should we delete non-current scsi data. | | delete_noncurrent_server | n | bool | Should we delete non-current server data. | | delete_noncurrent_server_item | n | bool | Should we delete non-current server_item data. | | delete_noncurrent_service | n | bool | Should we delete non-current service data. | | delete_noncurrent_share | n | bool | Should we delete non-current share data. | | delete_noncurrent_software | n | bool | Should we delete non-current software data. | | delete_noncurrent_software_key | n | bool | Should we delete non-current software_key data. | | delete_noncurrent_sound | n | bool | Should we delete non-current sound data. | | delete_noncurrent_task | n | bool | Should we delete non-current task data. | | delete_noncurrent_user | n | bool | Should we delete non-current user data. | | delete_noncurrent_user_group | n | bool | Should we delete non-current user_group data. | | delete_noncurrent_variable | y | bool | Should we delete non-current variable data. | | delete_noncurrent_video | n | bool | Should we delete non-current video data. | | delete_noncurrent_vm | n | bool | Should we delete non-current vm data. | | delete_noncurrent_windows | n | bool | Should we delete non-current windows data. | | device_auto_delete | n | bool | Should we delete the device data completely from the database when the device status is set to Deleted. | | discovery_default_scan_option | 1 | number | The default discovery options for Nmap. | | discovery_ip_exclude | | text | Populate this list with ip addresses to be excluded from discovery. IPs should be separated by a space. | | discovery_limit | 20 | number | The maximum number of concurrent discoveries we should run. | | discovery_linux_script_directory | /tmp/ | text | The directory the script is copied into on the target device. | | discovery_linux_script_permissions | 700 | text | The permissions set on the audit_linux.sh script when it is copied to the target device. | | discovery_linux_use_sudo | y | bool | When running discovery commands on a Linux target, should we use sudo. | | discovery_override_nmap | n | bool | Override the detction of Nmap to enable discoveries. | | discovery_pid | | number | The discovery queue process pid. | | discovery_route_retrieve_limit | 500 | number | When discovering a device using SNMP, do not retrieve the route table if it contains more than this number of entries. | | discovery_ssh_timeout | 300 | number | Timeout duration (in seconds) when discovering a device via SSH. | | discovery_sudo_path | | text | Optional hardcoded path to sudo executable. Comma seperated for multiple paths. | | discovery_sunos_use_sudo | y | bool | When running discovery commands on a SunOS target, should we use sudo. | | discovery_use_dns | y | bool | Should we use DNS for looking up the hostname and domain. | | discovery_use_ipmi | y | bool | Should we use ipmitool for discovering management ports if ipmitool is installed. | | discovery_use_vintage_service | n | bool | On Windows, use the old way of running discovery with the Apache service account. | | display_version | 3.3.0 | text | The version shown on the web pages. | | download_reports | y | bool | Tells Open-AudIT to advise the browser to download as a file or display the csv, xml, json reports. | | graph_days | 30 | number | The number of days to report on for the Enterprise graphs. | | gui_trim_characters | 25 | number | When showing a table of information in the web GUI, replace characters greater than this with "...". | | homepage | groups | text | Any links to the default page should be directed to this endpoint. | | internal_version | 20191010 | number | The internal numerical version. | | log_level | 5 | number | Tells Open-AudIT which severity of event (at least) should be logged. | | log_retain_level_0 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 0. | | log_retain_level_1 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 1. | | log_retain_level_2 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 2. | | log_retain_level_3 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 3. | | log_retain_level_4 | 180 | number | Tells Open-AudIT how many days to keep logs with severity 4. | | log_retain_level_5 | 90 | number | Tells Open-AudIT how many days to keep logs with severity 5. | | log_retain_level_6 | 30 | number | Tells Open-AudIT how many days to keep logs with severity 6. | | log_retain_level_7 | 7 | number | Tells Open-AudIT how many days to keep logs with severity 7. | | maps_api_key | | text | The API key for Google Maps. | | maps_url | /omk/open-audit/map | text | The web server address of opMaps. | | match_dbus | n | bool | Should we match a device based on its dbus id. | | match_dns_fqdn | n | bool | Should we match a device based on its DNS fqdn. | | match_dns_hostname | n | bool | Should we match a device based on its DNS hostname. | | match_fqdn | y | bool | Should we match a device based on its fqdn. | | match_hostname | y | bool | Should we match a device based only on its hostname. | | match_hostname_dbus | y | bool | Should we match a device based on its hostname and dbus id. | | match_hostname_serial | y | bool | Should we match a device based on its hostname and serial. | | match_hostname_uuid | y | bool | Should we match a device based on its hostname and UUID. | | match_ip | n | bool | Should we match a device based on its ip. | | match_ip_no_data | y | bool | Should we match a device based on its ip if we have an existing device with no data. | | match_mac | y | bool | Should we match a device based on its mac address. | | match_mac_vmware | n | bool | Should we match a device based mac address even if its a known likely duplicate from VMware. | | match_serial | y | bool | Should we match a device based on its serial number. | | match_serial_type | y | bool | Should we match a device based on its serial and type. | | match_sysname | y | bool | Should we match a device based only on its SNMP sysName. | | match_sysname_serial | y | bool | Should we match a device based only on its SNMP sysName and serial. | | match_uuid | y | bool | Should we match a device based on its UUID. | | nmis | n | bool | Enable import / export to NMIS functions. | | nmis_url | | text | The web server address of NMIS. | | oae_license | | text | License status of Open-AudIT Enterprise. | | oae_product | | text | The name of the installed commercial application. | | oae_prompt | 2001-01-01 | date | Prompt to activate a license for Open-AudIT Enterprise. | | oae_url | /omk/open-audit | text | The web server address of Open-AudIT Enterprise. | | output_escape_csv | y | bool | Escape CSV output so Excel will not attempt to run contents. | | page_size | 1000 | number | The default limit of rows to retrieve. | | process_netstat_windows_dns | n | bool | Should we keep track of Windows netstat ports used by DNS above port 1000. | | queue_count | 0 | number | The current number of concurrent device scans running. | | queue_limit | 20 | number | The maximum number of concurrent device scans we should run. | | rss_enable | y | bool | Enable the RSS feed. | | rss_url | https://community.opmantek.com/rss/OA.xml | text | The RSS feed URL. | | servers | | text | The servers to report to when using Agent / Collector / Server. | | server_ip | | text | The locally detected IP Addresses of this server. | | uuid | unique per installation | text | The unique identfier of this Open-AudIT server.