Below are the default values for the configuration of Open-AudIT. These can all be changed to work as you desire.
As at 1.12.10.
| Code Block |
|---|
+------------------------------------+-------------------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------+ | config_name | config_value | config_descriptiondescription | +------------------------------------+-------------------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------+ | adblessed_subnets_domainuse | y | | Should we only accept data from the blessed subnets list. | The domain name against which your users will validate to log on to Open-AudIT. EG - open-audit.org | | ad_server | | default_network_address | | | The IPip Addressaddress ofor theresolvable domainhostname controllerused yourby usersexternal will validatedevices to logtalk to Open-AudIT. EG - 192.168.0.1 | | blessed_subnets_use | | delete_noncurrent | y | n | Should we only accept data from the blessed subnets list. | Should we delete any attributes that are not present when we audit a device. | | defaultdiscovery_networkcreate_addressalerts | y | TheShould ipOpen-AudIT addresscreate oran resolvableentry hostnamein usedthe byalert externaltable devicesif toa talkchange tois Open-AudIT.detected. | | delete_noncurrentdiscovery_ip_exclude | | n | Populate this list |with Shouldip weaddresses deleteto anybe attributesexcluded thatfrom arediscovery. notIPs presentshould whenbe weseparated auditby a devicespace. | | discovery_linux_script_directory | /tmp/ | | discovery_create_alerts | yThe directory the script is copied into on the target device. | Should Open-AudIT create an entry in the alert table if a change is detected. | | discovery_linux_script_permissions | 700 | | discovery_ip_exclude | The permissions |set on the audit_linux.sh script when it is copied to the target device. | Populate this list with ip addresses to be excluded from discovery. IPs should be separated by a space. | | discovery_nmap_os | n | When discovery runs Nmap, should we use the -O flag to capture OS information (will slow down scan and requires SUID on the Nmap binary under Linux). | | discovery_use_dns | y | Should we use DNS for looking up the hostname and domain. | | discovery_use_ipmi | y | Should we use ipmitool for discovering management ports if ipmitool is installed. | | display_version | 2.0.1 | The version shown on the web pages. | | download_reports | download | Tells Open-AudIT to advise the browser to download as a file or display the csv, xml, json reports. Valid values are download and display. | | graph_days | 30 | The number of days to report on for the Enterprise graphs. | | homepage | | discovery_linux_script_directory | /tmp/ | groups | The directory the script is| copiedAny intolinks onto the default targetpage device.should be directed to this endpoint. | | discovery_linux_script_permissions | 700internal_version | 20170620 | The internal numerical version. | The permissions set on the audit_linux.sh script when it is copied to the target device. | | discovery_nmap_os | | nlogo | logo-banner-oac-oae | When discovery runs Nmap, should we use the -O flag to capture OS information| (willThe slowlogo downto scanbe andused requires SUID on the Nmap binary under Linux). | | discovery_update_groups | yin Open-AudIT. Should be a 475x60 .png. Name should not include the file extension. logo-banner-oac-oae is the default. | | log_level | 5 | Should Open-AudIT update the device groups after discovering a device. | Tells Open-AudIT which severity of event (at least) should be logged. | | discovery_use_dns | y | | log_retain_level_0 | 180 | Should we use DNS for looking up the hostname and domain. | Tells Open-AudIT how many days to keep logs with severity 0. | | discovery_use_ipmi | y | | log_retain_level_1 | 180 | Should we use ipmitool for discovering management ports if ipmitool is installed. | Tells Open-AudIT how many days to keep logs with severity 1. | | display_version | 1.12.10 | | log_retain_level_2 | The version shown on the web pages. | 180 | Tells Open-AudIT how many days to keep logs with severity 2. | | distinct_groups | y | | log_retain_level_3 | 180 | Display Groups on the homepage, separated into the type of each Group. | Tells Open-AudIT how many days to keep logs with severity 3. | | download_reports | download | | log_retain_level_4 | Tells180 Open-AudIT to advise the browser to download as a file or display the csv, xml, json reports. Valid values are download and display. | | internal_version | Tells Open-AudIT how many days to keep logs with severity 4. | 20160811 | The internal numerical version. | | log_retain_level_5 | 90 | Tells Open-AudIT how many days to keep logs with | | logo severity 5. | logo-banner-oae | The logo to be used in Open-AudIT. Should be a 475x60 .png. Name should not include the file extension. logo-banner-oac-oae is the default. | | log_retain_level _6 | 5 30 | Tells Open-AudIT whichhow severitymany ofdays eventto (atkeep least)logs shouldwith beseverity logged. 6. | | log_style | | log_retain_level_7 | syslog | 7 | Tells Open-AudIT which log format to use. Valid values are json and syslog. | Tells Open-AudIT how many days to keep logs with severity 7. | | maps_url | /omk/oae/map | | maps_api_key | AIzaSyAhAUqssRASeC0Pfyx1TW1DXRmboG5bdG0 | The webAPI serverkey addressfor ofGoogle opMapsMaps. | | match_dbus | | maps_url | n | /omk/open-audit/map | The web server address of opMaps. | Should we match a device based on its dbus id. | | match_fqdndbus | yn | Should we match a device based on its dbus fqdnid. | | match_hostnamefqdn | y | Should we match a device based on its hostnamefqdn. | | match_hostname_dbus | y | Should we match a device based only on its hostname. and dbus id. | | match_hostname_serialdbus | y | Should we match a device based on its hostname and serialdbus id. | | match_hostname_uuid serial | y | Should we match a device based on its hostname and UUIDserial. | | match_ip _hostname_uuid | ny | Should we match a device based on its ip.hostname and UUID. | | match_macip | n | Should we match a device based on its mac address. ip. | | match_mac_vmware | n | Should we match a device based on its mac address. even if it's a known likely duplicate from VMware. | | match_serial | y | | match_mac_vmware | n | Should we match a device based on its serial number. | Should we match a device based mac address even if it's a known likely duplicate from VMware. | | match_serial_type | y | Should we match a device based on its serial number. and type. | | match_uuid_serial_type | y | y Should we match a device based on its serial and type. | Should we match a device based on its UUID. | | match_uuid | y | | network_group_auto_create | yShould we match a device based on its UUID. | Have Open-AudIT automatically create Groups based on Subnet. | | nmis | | network_group_homepage_limit | n 20 | TheEnable numberimport of/ network groupsexport to display on the homepage. NMIS functions. | | network_group_subnet | | 30nmis_url | | If the netmask is equal to or greater than this number, do not create a network group. | The web server address of NMIS. | | nmis | n | | Enable import / export to NMIS functions.oae_license | none | License status of Open-AudIT Enterprise. | | nmis_url | | | oae_prompt | The web server address of NMIS. | 2017-06-28 | Prompt to activate a license for Open-AudIT Enterprise. | | non_admin_search | y | | oae_url | Enable or disable search for non-Administrators/omk/open-audit | The web server address of Open-AudIT Enterprise. | | oae_url | /omk/oae | page_refresh | 300 | The web server address of Open-AudIT Enterprise. | Interval in seconds between auto-refreshing the page. Set to 0 to cancel auto-refresh. | | page_refreshprocess_netstat_windows_dns | | 300 | Should we keep track of Windows netsta ports used by | Interval in seconds between auto-refreshing the page. Set to 0 to cancel auto-refresh.DNS above port 1000. | | rss_enable | y | Enable the RSS feed. | | rss_url | https://community.opmantek.com/rss/OA.xml | The RSS feed URL. .xml | The RSS feed URL. | | show_passwords | n | | uuid | Show any passwords on forms. | 980906d2-5994-11e7-a4a3-1c1b0d60813b | The unique identfier of this Open-AudIT server. | | showoae_snmp_communityproduct | n | Open-AudIT Community | The name | Show of the SNMPinstalled community string on forms. commercial application. | +------------------------------------+-------------------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------+ |