Table of Contents

Configuration

All settings apart from the database credentials should be accessible using the GUI. The GUI menu has entries for each major section and the Professional / Enterprise configuration options are separate from the Community options.

Image Added

Configuring Professional or Enterprise

...

To change these using the GUI in Open-AudIT navigate to menu -> Admin -> Configuration -> AllImage Removed

Name	Original Value	Possible Values	Description
access_token_count	20	<integer>	Allow this many access tokens to be stored in the cookie.
access_token_enable	y	y, n	Should we enable access tokens for CSRF mitigation.
blessed_subnets_use	n	y, n	Should we only accept data from the blessed subnets list.
collector_check_minutes	5	5, 10, 15, 20, 30, 60	The default check interval for collectors.
create_change_log	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected.
create_change_log_bios	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the bios table.
create_change_log_disk	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the disk table.
create_change_log_dns	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the dns table.
create_change_log_file	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the file table.
create_change_log_ip	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the ip table.
create_change_log_log	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the log table.
create_change_log_memory	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the memory table.
create_change_log_module	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the module table.
create_change_log_monitor	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the monitor table.
create_change_log_motherboad	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the motherboard table.
create_change_log_netstat	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table.
create_change_log_netstat_dynamic	n	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is 49152 or greater.
create_change_log_netstat_registered	n	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is in the range of 1024 to 49151.
create_change_log_netstat_well_known	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the netstat table and the port is 1023 or lower.
create_change_log_network	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the network table.
create_change_log_nmap	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the nmap table.
create_change_log_optical	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the optical table.
create_change_log_pagefile	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the pagefile table.
create_change_log_partition	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the partition table.
create_change_log_policy	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the policy table.
create_change_log_print_queue	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the print_queue table.
create_change_log_processor	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the processor table.
create_change_log_route	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the route table.
create_change_log_san	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the san table.
create_change_log_scsi	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the scsi table.
create_change_log_server	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the server table.
create_change_log_server_item	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the server_item table.
create_change_log_service	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the service table.
create_change_log_share	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the share table.
create_change_log_software	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the software table.
create_change_log_software_key	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the software_key table.
create_change_log_sound	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the sound table.
create_change_log_task	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the task table.
create_change_log_user	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the user table.
create_change_log_user_group	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the user_group table.
create_change_log_variable	n	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the variable table.
create_change_log_video	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the video table.
create_change_log_vm	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the vm table.
create_change_log_windows	y	y, n	Should Open-AudIT create an entry in the change log table if a change is detected in the windows table.
database_show_row_limit	1000	<integer>	The limit of rows to show, rather than download when exporting a database table.
decrypt_credentials	y	y, n	When we display or export credentials, should we decrypt them.
default_network_address	http://localhost/open-audit/	<url>	The URL used by external devices to talk to Open-AudIT.
delete_noncurrent	n	y, n	Should we delete all non-current data.
delete_noncurrent_bios	n	y, n	Should we delete non-current bios data.
delete_noncurrent_disk	n	y, n	Should we delete non-current disk data.
delete_noncurrent_dns	n	y, n	Should we delete non-current dns data.
delete_noncurrent_file	n	y, n	Should we delete non-current file data.
delete_noncurrent_ip	n	y, n	Should we delete non-current ip data.
delete_noncurrent_log	n	y, n	Should we delete non-current log data.
delete_noncurrent_memory	n	y, n	Should we delete non-current memory data.
delete_noncurrent_module	n	y, n	Should we delete non-current module data.
delete_noncurrent_monitor	n	y, n	Should we delete non-current monitor data.
delete_noncurrent_motherboard	n	y, n	Should we delete non-current motherboard data.
delete_noncurrent_netstat	y	y, n	Should we delete non-current netstat data.
delete_noncurrent_network	n	y, n	Should we delete non-current network data.
delete_noncurrent_nmap	n	y, n	Should we delete non-current nmap data.
delete_noncurrent_optical	n	y, n	Should we delete non-current optical data.
delete_noncurrent_pagefile	n	y, n	Should we delete non-current pagefile data.
delete_noncurrent_partition	n	y, n	Should we delete non-current partition data.
delete_noncurrent_policy	n	y, n	Should we delete non-current policy data.
delete_noncurrent_print_queue	n	y, n	Should we delete non-current print_queue data.
delete_noncurrent_processor	n	y, n	Should we delete non-current processor data.
delete_noncurrent_route	n	y, n	Should we delete non-current route data.
delete_noncurrent_san	n	y, n	Should we delete non-current san data.
delete_noncurrent_scsi	n	y, n	Should we delete non-current scsi data.
delete_noncurrent_server	n	y, n	Should we delete non-current server data.
delete_noncurrent_server_item	n	y, n	Should we delete non-current server_item data.
delete_noncurrent_service	n	y, n	Should we delete non-current service data.
delete_noncurrent_share	n	y, n	Should we delete non-current share data.
delete_noncurrent_software	n	y, n	Should we delete non-current software data.
delete_noncurrent_software_key	n	y, n	Should we delete non-current software_key data.
delete_noncurrent_sound	n	y, n	Should we delete non-current sound data.
delete_noncurrent_task	n	y, n	Should we delete non-current task data.
delete_noncurrent_user	n	y, n	Should we delete non-current user data.
delete_noncurrent_user_group	n	y, n	Should we delete non-current user_group data.
delete_noncurrent_variable	y	y, n	Should we delete non-current variable data.
delete_noncurrent_video	n	y, n	Should we delete non-current video data.
delete_noncurrent_vm	n	y, n	Should we delete non-current vm data.
delete_noncurrent_windows	n	y, n	Should we delete non-current windows data.
devices_default_display_columns	system.id,system.icon,system.type, system.name,system.ip,system.dns_fqdn, system.identification,system.description, system.manufacturer,system.os_family,system.status		When requesting a list of devices, display these columns.
devices_default_group_columns	system.id,system.icon,system.type,system.name, system.ip,system.dns_fqdn,system.identification, system.description,system.manufacturer,system.os_family,system.status		When requesting a group of devices, retrieve and display these columns.
devices_default_retrieve_columns	system.id,system.uuid,system.name,system.ip,system.hostname, system.dns_hostname,system.domain,system.dns_domain, system.dbus_identifier,system.fqdn,system.dns_fqdn,system.description, system.type,system.icon,system.os_group,system.os_family, system.os_name,system.os_version,system.manufacturer,system.model, system.serial,system.form_factor,system.status,system.environment, system.class,system.function,system.org_id,system.location_id, system.snmp_oid,system.sysDescr,system.sysObjectID,system.sysUpTime, system.sysContact,system.sysName,system.sysLocation,system.first_seen, system.last_seen,system.last_seen_by,system.identification		When requesting a list of devices, provide these columns.
device_auto_delete	y	y, n	Should we delete the device data completely from the database when the device status is set to Deleted.
discovery_default_scan_option	1	<integer>	The default discovery options for Nmap.
discovery_ip_exclude		<ip>	Populate this list with ip addresses to be excluded from discovery. IPs should be separated by a space.
discovery_limit	20	<integer>	The maximum number of concurrent discoveries we should run.
discovery_linux_script_directory	/tmp/	<filepath>	The directory the script is copied into on the target device.
discovery_linux_script_permissions	700		The permissions set on the audit_linux.sh script when it is copied to the target device.
discovery_linux_use_sudo	y	y, n	When running discovery commands on a Linux target, should we use sudo.
discovery_override_nmap	n	y, n	Override the detction of Nmap to enable discoveries.
discovery_route_retrieve_limit	500	<integer>	When discovering a device using SNMP, do not retrieve the route table if it contains more than this number of entries.
discovery_ssh_timeout	300	<integer>	Timeout duration (in seconds) when discovering a device via SSH.
discovery_sudo_path		<filepath>	Optional hardcoded path to sudo executable. Comma seperated for multiple paths.
discovery_sunos_use_sudo	y	y, n	When running discovery commands on a SunOS target, should we use sudo.
discovery_use_dns	y	y, n	Should we use DNS for looking up the hostname and domain.
discovery_use_ipmi	y	y, n	Should we use ipmitool for discovering management ports if ipmitool is installed.
discovery_use_vintage_service	n	y, n	On Windows, use the old way of running discovery with the Apache service account.
download_reports	n	y, n	Tells Open-AudIT to advise the browser to download as a file or display the csv, xml, json reports.
graph_days	30	<integer>	The number of days to report on for the Enterprise graphs.
gui_trim_characters	25	<integer>	When showing a table of information in the web GUI, replace characters greater than this with "...".
homepage	groups		Any links to the default page should be directed to this endpoint.
log_level	5	1,2,3,4,5,6,7	Tells Open-AudIT which severity of event (at least) should be logged.
log_retain_level_0	180	<integer>	Tells Open-AudIT how many days to keep logs with severity 0.
log_retain_level_1	180	<integer>	Tells Open-AudIT how many days to keep logs with severity 1.
log_retain_level_2	180	<integer>	Tells Open-AudIT how many days to keep logs with severity 2.
log_retain_level_3	180	<integer>	Tells Open-AudIT how many days to keep logs with severity 3.
log_retain_level_4	180	<integer>	Tells Open-AudIT how many days to keep logs with severity 4.
log_retain_level_5	90	<integer>	Tells Open-AudIT how many days to keep logs with severity 5.
log_retain_level_6	30	<integer>	Tells Open-AudIT how many days to keep logs with severity 6.
log_retain_level_7	7	<integer>	Tells Open-AudIT how many days to keep logs with severity 7.
maps_api_key			The API key for Google Maps.
maps_url	/omk/open-audit/map	<absolute url>	The web server address of opMaps.
match_dbus	n	y, n	Should we match a device based on its dbus id.
match_dns_fqdn	n	y, n	Should we match a device based on its DNS fqdn.
match_dns_hostname	n	y, n	Should we match a device based on its DNS hostname.
match_fqdn	y	y, n	Should we match a device based on its fqdn.
match_hostname	y	y, n	Should we match a device based only on its hostname.
match_hostname_dbus	y	y, n	Should we match a device based on its hostname and dbus id.
match_hostname_serial	y	y, n	Should we match a device based on its hostname and serial.
match_hostname_uuid	y	y, n	Should we match a device based on its hostname and UUID.
match_ip	y	y, n	Should we match a device based on its ip.
match_ip_no_data	y	y, n	Should we match a device based on its ip if we have an existing device with no data.
match_mac	y	y, n	Should we match a device based on its mac address.
match_mac_vmware	n	y, n	Should we match a device based mac address even if its a known likely duplicate from VMware.
match_serial	y	y, n	Should we match a device based on its serial number.
match_serial_type	y	y, n	Should we match a device based on its serial and type.
match_sysname	y	y, n	Should we match a device based only on its SNMP sysName.
match_sysname_serial	y	y, n	Should we match a device based only on its SNMP sysName and serial.
match_uuid	y	y, n	Should we match a device based on its UUID.
nmis	n	y, n	Enable import / export to NMIS functions.
nmis_url		<absolute url>	The web server address of NMIS.
oae_url	/omk/open-audit	<absolute url>	The web server address of Open-AudIT Enterprise.
output_escape_csv	y	y, n	Escape CSV output so Excel will not attempt to run contents.
page_size	1000	<integer>	The default limit of rows to retrieve.
process_netstat_windows_dns	n	y, n	Should we keep track of Windows netstat ports used by DNS above port 1000.
queue_limit	20	<integer>	The maximum number of concurrent device scans we should run.
rss_enable	y	y, n	Enable the RSS feed.
rss_url	https://community.opmantek.com/rss/OA.xml	<url>	The RSS feed URL.

...

Space shortcuts

Page tree

Versions Compared

Old Version 1

New Version 2

Key

Configuration

Configuring Professional or Enterprise

Space shortcuts

Page tree

Page History

Versions Compared

Old Version 1

New Version 2

Key

Configuration

Configuring Professional or Enterprise