Auditing using a GUI
In Open-AudIT, go to Menu -> Admin -> Discovery -> Discover a Device. You will see the below form.
If you have set the "Local Network Address" in the config (Menu -> Admin -> Config) it will be pre-populated. This should be the ip address of your Open-Audit server.
Add the ip address of the target computer, along with credentials (again, if you have set these in the config, they will be pre-populated).
In general you should NOT use the "Debug" option. This is for troubleshooting.
Click the "Audit" button and you will be directed to the Log page. You can refresh this page to see the status of the audit being performed.
Auditing using a script
To use the Linux audit script located at open-audit/other/audit_linux.sh:
- Edit the script and ensure the $url variable is set to your webserver - the same as is done for the audit_windows.vbs script.
- Copy it to the target computer.
- Ensure the script has permission to operate (chmod 777 audit_linux.sh is fine).
- Run the script with root level permission either by sudo or directly as root.
The script has variables that can be set the same as the variables in audit_windows.vbs. You could (for example) dynamically set the $url variable when you run the script by
The variables that are accepted on the command line are:
submit_online - Defaults to "y" and submits the audit result to the server as per the $url variable.
create_file - Defaults to "n". If set to "y", an XML file will be created and saved as per the audit_windows.vbs script. This file can be manually copied and submitted to the server at a later stage if desired.
check_commands - Default "n". If set to "y" will run a check to determine if the programs required to complete the audit are installed. NOTE - even though some programs may not be installed, the audit may complete anyway (obviously lacking the information that would have been retrieved had these missing programs been present).