You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Discovery Overview

Discovery is a new feature in Open-AudIT version 1.2. Discovery will audit Windows and Linux computers, SNMP scan network devices and record active target addresses if no SNMP is active. Discovery runs entirely from the web interface regardless of the Open-AudIT server running on Linux or Windows.

How to use Discovery

Setting Default Attributes

To use Discovery, first a few default attributes should be set.

As an Open-AudIT admin level user, go to Menu -> Admin -> Config.

The single most important attribute to set the the "default_network_address" attribute. This is used for Discovery so that when we send an audit script to a remote machine we can also provide the URL of the Open-AudIT server for the remote machine to send it's data back to. We set this manually because your Open-AudIT server may have multiple network addresses. Rather than try and work out the correct address, we ask you to complete this step manually so there can be no mistakes.

You should also set the following fields:

  • default_snmp_community
  • default_ssh_username
  • default_ssh_password
  • default_windows_username
  • default_windows_domain
  • default_windows_password

Once these have been completed you can go to Menu -> Admin -> Discovery -> Discover a Subnet.

 

This form will pre-populate with your defaults (which you have just configured), but you can also over ride them with specific attributes for any given Discovery run.

Fill the form details and click the Discover button.

Results

You will be redirected to the Logging page. You can refresh this page and see the progress of the Discovery run. Note that the first log may take a short while if the script has to determine if a number of target devices are active on a large subnet range.

Once the initial list of target devices has been obtained you should see details of each target as it is scanned and input into Open-AudIT.

Logging

NOTE - The logging is quite verbose so there is now a feature to purge the log file at Menu -> Admin -> Logs -> Purge Log.

You should see logging similar to the below. In the below instance, a Discovery run was performed on 192.168.0.1-5 and the device at 192.168.0.1 was found and SNMP scanned.

 

 

  • No labels