| Table of Contents |
|---|
Introduction
Open-AudIT Enterprise 1.5.1 now introduces the ability to schedule certain types of repetitive tasks.
Open-AudIT Enterprise has a gui tool to enable the scheduling of Subnet Discovery, Active Directory Discovery, Emailed Reports, Updating Groups and Running Baselines.
Scheduled Tasks use 'schtasks' under Windows and 'cron' under Linux.
NOTE - Microsoft has removed the 'at' functionality under Windows 2012 and later. We are currently working through a change to our code to re-enable Scheduled Tasks under Windows 2012 (and later).
Windows tasks can be enumerated using a command prompt and typing 'at'. Fixed as at Open-AudIT 1.8.4.
Linux jobs can be enumerated by using a shell and running 'less /etc/cron.d/oae'.
As at version 2.0.6 of Open-AudIT we have rewritten the tasks functionality.
Tasks now offer full CRON type scheduling under both Linux and Windows. There is a single entry in either cron (/etc/cron.d/open-audit) or under Windows Task Manager (open-audit). This task runs every minute and checks the list of tasks within Open-AudIT for those that should be run. If there is a scheduled match, the task(s) is executed.
Tasks can be one of several distinct types: Baseline, Discovery, Report, Query, Summary or Collector.
Special Note - If you are using https for Open-AudIT, you will need to manually edit the files /usr/local/omk/bin/open-audit_tasks.[sh|vbs]. You will need to update the URL to reflect the https prefix. To use https, there is a line below that should be uncommented, and the regular line commented out. that's all there is to it.
Join Paul McClendon, an Opmantek Support Engineer, as he demonstrates how to schedule tasks to run automatically in Open-AudIT.
| Widget Connector | ||||||
|---|---|---|---|---|---|---|
|
Listing Tasks
All scheduled tasks are listed in the configuration Admin section of the Open-AudIT Enterprise ( menu.
Menu -> System Admin -> Tasks -> Setup Scheduled List Tasks). From this screen, you can add, remove and edit scheduled tasks.
Creating
Scheduling
All tasks can be scheduled created the same in Windows and Linux. Tasks use the CRON method for scheduling execution.
You should first choose a schedule type.
Weekly
This will run the task at the specified time on the specified days.
Custom
This is new for Open-AudIT Enterprise 1.12_2. You can specify the number of days to wait between running a task. You must provide a date when the task should be first run along with a time. When configured you can schedule a job to be run every X days at the specified time.
Minute: (0-59)Hour: (0-23)Day of Month: (1-31)Month: (1-12)Day of Week: (0-6)For a primer on cron, see this Wikipedia page: https://en.wikipedia.org/wiki/Cron
On the Tasks List page, click the "Add New" button to configure a task.
Choose the "type" of the task from the first drop down. This will configure the additional fields required depending on the type of task.
If the Open-AudIT Server has Collectors reporting to it, an additional drop down is provided. You can select this to specify which Collector the task should run on. Only Discovery tasks are supported for Collectors.
Baselines
Once you have generated a Baseline Definition you can schedule it to be run against a specified group of devices.
Collectors
Collector tasks are automatically setup when the collector feature is enabled. Collector tasks should not be created directly by users. Collector tasks can have their frequency edited after creation. If the Open-AudIT Server has Collectors reporting to it, an additional drop down is provided. You can select this to specify which Collector the task should run on. Only Discovery tasks are supported for Collectors.
Discoveries
Setting up Discovery on a subnet is almost identical to running a regular Discovery via the web interface. The only additional items are the scheduled hour and day(s) and a name for the Scheduled Task itself. You can take advantage of this to schedule multiple discoveries using different sets of credentials.
As per the Subnet Discovery, the Active Directory Discovery is also simply the same fields as a regular Active Directory Discovery with the addition of a day, hour(s) and name.
If the Open-AudIT Server has Collectors reporting to it, an additional drop down is provided. You can select this to specify which Collector the task should run on. Only Discovery tasks are supported for Collectors. Specify the same items as a regular Discovery, but provide the alternate Collector to run this task.
...
Reports
When you enable a Report to be run on a schedule, the report is emailed to your chosen address. You MUST must have set up email via menu -> System Admin -> Enterprise -> Email )Config. We also have a "test email" button on that page. Input your details, save it and then test it. You should have a modal box that informs you if it successful or not and obviously a test email should arrive if it is successful. Once you have email configured, your scheduled reports can be configured.
On the Task Schedule page, click the "Add New" button to configure a task.
Choose the "type" of scheduled task from the first drop down. This will configure the additional fields required depending on the type of task. Obviously, choose Scheduled ReportProvide a name, optional description, choose 'Report' type, select the desired report, provide an email address, choose a format and set the schedule.
Provide an hour (hour only, no minutes as yet), give the task a name (this is not the name of the actual scheduled report itself), select which days you would like the report run, choose which report you would like run, supply an email address and choose a report format and you're done.
Reports will be sent with an email body of the report (in html format) and the report attached in the requested format.
Setting up Subnet Discovery
Setting up Discovery on a subnet is almost identical to running a regular Discovery via the web interface. The only additional items are the schedule hour and day(s) and a name for the Scheduled Task itself. You can take advantage of this to schedule multiple discoveries using different sets of credentials.
Setting up Active Directory Discovery
As per the Subnet Discovery, the Active Directory Discovery is also simply the same fields as a regular Active Directory Discovery with the addition of a day, hour(s) and name.
Setting Up Baselines
Once you have generated a Baseline Definition you can schedule it to be run against a given group of devices.
Setting up Group Updates
If you have a large number of device groups in Open-AudIT Community, you can disable the audit processing and discovery routines from running the group update routine. This should speed up processing device results and discovery but at a cost of not updating your groups. Open-AudIT Enterprise allows you to schedule when you would like the group update routine to run. In extreme circumstances it may be beneficial to postpone the group update routine and run it on a schedule in period(s) of quiet activity on the Open-AudIT server.
Queries
Queries take the same arguments as Reports.
Summaries
Summaries take the same arguments as Reports.
Database Schema
The database schema can be found in the application is the user has database::read permission by going to menu: Admin -> Database -> List Tables, then clicking on the details button for the table.
API / Web Access
You can access the collection using the normal Open-AudIT JSON based API. Just like any other collection. Please see The Open-AudIT API documentation for further details.
Default Items
Shipped are a set of default items. These can be found by going to menu: Help → Defaults → Discovery Scan Options.