[quote="pwetter"]I was going to start looking at this as a free audit software. My question is, how does the software handle disconnected users? That is, computers that are only connected to the corporate network through VPN a few hours every day. A non service based software like this would seem to have trouble, in my opinion, trying to pull data from a laptop computer in the field. Systems that are always on, always connected to the internal corporate network are generally always available to be queried for data like the VBscript does. The big question is the often disconnected field user. Let me know if you need more of an explanation of the scenario.
Is anyone using it successfully in this type of scenario? Yes, I have a few like that but on Open-AudIT v1
I punched a hole in my firewall, to a machine which runs apache proxy reverse, which uses https and requires a username and password. For additional security you could require a client certificate. I have increased the reporting using the build in scheduling software of the windows laptops, like every day, at boot/login and such.
The apache reverse proxy machine then forwards data as normal to my openaudit installation.
Alternatively the audit script could email the audit result, or IM it, or IRC, or ...
|