Registrations to Open-AudIT forums are now closed. To ask any new questions please visit Opmantek Community Questions.

Open-AudIT

What's on your network?
It is currently Fri Mar 29, 2024 12:36 pm

All times are UTC + 10 hours




Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 3 posts ] 
Author Message
PostPosted: Sat Dec 08, 2007 8:55 pm 
Offline
Newbie

Joined: Sat Nov 24, 2007 1:42 am
Posts: 5
I can scan host individually in a particular OU, or a single host from a host list file, however, when I attempt to scan and entire OU, or entire host list file, I recieve the below results. The scan does not update or insert new records in the database. I'm curious as to why the Number of systems retrieved from ldap is 3, when there are indeed four hosts in this OU?

To ensure my rights were correct, I can take any host from the list or OU and scan individually from this scanning host, so the host rights, and basic functionality are fine. Scanning, IIS, and MySQL are from a single host.

============
C:\>CSCRIPT C:\Inetpub\wwwroot\openaudit\scripts\AUDIT.VBS
Microsoft (R) Windows Script Host Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.

Computer Name from ldap: ITC-FS01
Computer Name from ldap: ITC-FS02
Computer Name from ldap: ITC-FS03
Computer Name from ldap: ITC-FS04
Number of systems retrieved from ldap: 3
--------------
0 of 3
Processes running: 1
Next System: ITC-FS01
--------------
1 of 3
Processes running: 2
Next System: ITC-FS02
--------------
2 of 3
Processes running: 3
Next System: ITC-FS03
--------------
3 of 3
Processes running: 3
Next System: ITC-FS04
--------------
============

audit.conf
============
audit_location = "l"
verbose = "y"
online = "yesxml"
strComputer = ""
ie_visible = "n"
ie_auto_submit = "y"
ie_submit_verbose = "y"
ie_form_page = "http://localhost/openaudit/admin_pc_add_1.php"
non_ie_page = "http://localhost/openaudit/admin_pc_add_2.php"
input_file = ""
email_to = ""
email_from = ""
email_server = ""
audit_local_domain = "y"
local_domain = "LDAP://DomainController.ad.*.edu/OU=FILE,OU=SERVERS,OU=ITCENTER,OU=HSC,OU=Departments,OU=OSU,DC=ad,DC=*,DC=edu"
hfnet = "n"
Count = 0
number_of_audits = 20
script_name = "audit.vbs"
monitor_detect = "n"
printer_detect = "y"
software_audit = "y"
uuid_type = "mac"
===============
*inserted in local_domain string to provide anonimity.

I know I've missed something, I just can't resolve what it is. Any help appreciated.

In case someone could benefit, I needed to add some subnet restrictions to the firewall_allow.vbs:

[code]Set objFirewall = CreateObject("HNetCfg.FwMgr")
Set objPolicy = objFirewall.LocalPolicy.CurrentProfile
Set objAdminSettings = objPolicy.RemoteAdminSettings
objAdminSettings.Enabled = TRUE
objAdminSettings.RemoteAddresses = "192.178.79.192/255.255.255.240"
objAdminSettings.Scope = 0[/code]

In addition, you can query a machine to determine status with the following. We set ours up in logon script to append back to a txt file, so we can periodically audit the settings and verify provisioned host changes.

[code]Set objFirewall = CreateObject("HNetCfg.FwMgr")
Set objPolicy = objFirewall.LocalPolicy.CurrentProfile

Set objAdminSettings = objPolicy.RemoteAdminSettings
Wscript.Echo "Remote administration settings enabled: " & _
objAdminSettings.Enabled
Wscript.Echo "Remote administration addresses: " & _
objAdminSettings.RemoteAddresses
Wscript.Echo "Remote administration scope: " & objAdminSettings.Scope
Wscript.Echo "Remote administration IP version: " & objAdminSettings.IPVersion[/code]


Top
 Profile  
Reply with quote  
PostPosted: Sat Dec 22, 2007 11:51 pm 
Offline
Newbie

Joined: Sat Nov 24, 2007 1:42 am
Posts: 5
Got her squared away ....missing character. :D


Top
 Profile  
Reply with quote  
PostPosted: Mon Dec 24, 2007 7:18 pm 
Offline
Moderator
User avatar

Joined: Tue Jan 25, 2005 3:09 am
Posts: 2140
Location: Scotland
Glad to see its working. 8)

_________________
Andrew

[size=85]OA Server: Windows XP/ XAMPP, Mandriva/Apache, Ubuntu
Auditing: 300+ Wstns, 20+ Srvrs, Thin clients, Linux boxes, Routers, etc
OS's: Windows XP , W2K Srvr, W2K3 Srvr, W2K8, Vista, Windows 7, Linuxes (and a Mac at home)
LDAP: Active Directory[/size]


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 3 posts ] 

All times are UTC + 10 hours


Who is online

Users browsing this forum: No registered users and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group