I can scan host individually in a particular OU, or a single host from a host list file, however, when I attempt to scan and entire OU, or entire host list file, I recieve the below results. The scan does not update or insert new records in the database. I'm curious as to why the Number of systems retrieved from ldap is 3, when there are indeed four hosts in this OU?
To ensure my rights were correct, I can take any host from the list or OU and scan individually from this scanning host, so the host rights, and basic functionality are fine. Scanning, IIS, and MySQL are from a single host.
============ C:\>CSCRIPT C:\Inetpub\wwwroot\openaudit\scripts\AUDIT.VBS Microsoft (R) Windows Script Host Version 5.6 Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.
Computer Name from ldap: ITC-FS01 Computer Name from ldap: ITC-FS02 Computer Name from ldap: ITC-FS03 Computer Name from ldap: ITC-FS04 Number of systems retrieved from ldap: 3 -------------- 0 of 3 Processes running: 1 Next System: ITC-FS01 -------------- 1 of 3 Processes running: 2 Next System: ITC-FS02 -------------- 2 of 3 Processes running: 3 Next System: ITC-FS03 -------------- 3 of 3 Processes running: 3 Next System: ITC-FS04 -------------- ============
audit.conf ============ audit_location = "l" verbose = "y" online = "yesxml" strComputer = "" ie_visible = "n" ie_auto_submit = "y" ie_submit_verbose = "y" ie_form_page = "http://localhost/openaudit/admin_pc_add_1.php" non_ie_page = "http://localhost/openaudit/admin_pc_add_2.php" input_file = "" email_to = "" email_from = "" email_server = "" audit_local_domain = "y" local_domain = "LDAP://DomainController.ad.*.edu/OU=FILE,OU=SERVERS,OU=ITCENTER,OU=HSC,OU=Departments,OU=OSU,DC=ad,DC=*,DC=edu" hfnet = "n" Count = 0 number_of_audits = 20 script_name = "audit.vbs" monitor_detect = "n" printer_detect = "y" software_audit = "y" uuid_type = "mac" =============== *inserted in local_domain string to provide anonimity.
I know I've missed something, I just can't resolve what it is. Any help appreciated.
In case someone could benefit, I needed to add some subnet restrictions to the firewall_allow.vbs:
[code]Set objFirewall = CreateObject("HNetCfg.FwMgr") Set objPolicy = objFirewall.LocalPolicy.CurrentProfile Set objAdminSettings = objPolicy.RemoteAdminSettings objAdminSettings.Enabled = TRUE objAdminSettings.RemoteAddresses = "192.178.79.192/255.255.255.240" objAdminSettings.Scope = 0[/code]
In addition, you can query a machine to determine status with the following. We set ours up in logon script to append back to a txt file, so we can periodically audit the settings and verify provisioned host changes.
[code]Set objFirewall = CreateObject("HNetCfg.FwMgr") Set objPolicy = objFirewall.LocalPolicy.CurrentProfile
Set objAdminSettings = objPolicy.RemoteAdminSettings Wscript.Echo "Remote administration settings enabled: " & _ objAdminSettings.Enabled Wscript.Echo "Remote administration addresses: " & _ objAdminSettings.RemoteAddresses Wscript.Echo "Remote administration scope: " & objAdminSettings.Scope Wscript.Echo "Remote administration IP version: " & objAdminSettings.IPVersion[/code]
|