Child pages
  • How to audit a single Linux computer
Skip to end of metadata
Go to start of metadata

 

Auditing using a GUI

In Open-AudIT, go to Menu -> Admin -> Discovery -> Discover a Device. You will see the below form.

If you have set the "Local Network Address" in the config (Menu -> Admin -> Config) it will be pre-populated. This should be the ip address of your Open-Audit server.

Add the ip address of the target computer, along with credentials (again, if you have set these in the config, they will be pre-populated).

In general you should NOT use the "Debug" option. This is for troubleshooting.

Click the "Audit" button and you will be directed to the Log page. You can refresh this page to see the status of the audit being performed.

Auditing using a script

To use the Linux audit script located at open-audit/other/audit_linux.sh:

  • Edit the script and ensure the $url variable is set to your webserver - the same as is done for the audit_windows.vbs script.
  • Copy it to the target computer.
  • Ensure the script has permission to operate (chmod 777 audit_linux.sh is fine).
  • Run the script with root level permission either by sudo or directly as root.

The script has variables that can be set the same as the variables in audit_windows.vbs. You could (for example) dynamically set the $url variable when you run the script by

./audit_linux.sh url=http://your_server/index.php/system/add_system

The variables that are accepted on the command line are: 

submit_online - Defaults to "n". If set to "y" it will submit the audit result to the URL as specified by the url variable.

create_file - Defaults to "y". If set to "y", an XML file will be created and saved as per the audit_windows.vbs script. This file can be manually copied and submitted to the server at a later stage if desired.

  • No labels

2 Comments

  1. how to give credentials of the target ?

    1. menu -> Admin -> Credentials