Hi all
I have gone through pages and pages of information relating to doing Windows PC audit and I have been unable to find any information that has helped me, which is rather frustrating as I'm on a deadline to get my network Audited.
So I have gotten an Ubuntu 8.04 Desktop PC up and running and have OA runing on there. I have configured ldap as I want to scan my entire domain.
I edit the audit.config file and it is as follows:
Quote:
'
' Standard audit section
'
audit_location = "r"
verbose = "y"
audit_host="http://192.168.16.249"
online = "yesxml"
strComputer = ""
ie_visible = "n"
ie_auto_submit = "y"
ie_submit_verbose = "n"
ie_form_page = audit_host + "/openaudit/admin_pc_add_1.php"
non_ie_page = audit_host + "/openaudit/admin_pc_add_2.php"
input_file = "pc_list_file.txt"
'
' Email authentication
'
'
email_to = "example@example.com"
email_from = "example@example.com"
'email_sender = "Open-AudIT"
email_server = "mail.example.com" ' IP address or FQDN
email_port = "25" ' The SMTP port
email_auth = "1" ' 0 = Anonymous, 1 = Clear-text Authentication, 2 = NTLM
email_user_id = "example@example.com" ' A valid Email account in user@domain format
email_user_pwd = "some_password" ' The SMTP email password
email_use_ssl = "false" ' True/False
email_timeout = "60" ' In seconds
send_email = "false" ' True/False - Enable/Disable email sending
audit_local_domain = "y"
'
' Set domain_type = 'nt' for NT4 or SAMBA otherwise leave blank or set to ldap
'domain_type = "nt"
local_domain = "LDAP://mydomain.com"
'
' Example Set Domain name for NT ONLY for LDAP use the above format
' NOTE This is Case Sensetive. See the example below.
'
'local_domain = "WinNT://IEXPLORE"
'local_domain = "WinNT://<domainname>"
'
hfnet = "n"
Count = 0
number_of_audits = 60
script_name = "audit.vbs"
monitor_detect = "y"
printer_detect = "y"
software_audit = "y"
uuid_type = "uuid"
'
' Nmap section
'
nmap_tmp_cleanup = true ' Set this false if you want to leave the tmp files for analysis in your tmp folder
nmap_subnet = "192.168.16." ' The subnet you wish to scan
nmap_subnet_formatted = "192.168.016." ' The subnet padded with 0's
nmap_ie_form_page = audit_host + "/openaudit/admin_nmap_input.php"
nmap_ie_visible = "n"
nmap_ie_auto_close = "y"
nmap_ip_start = 1
nmap_ip_end = 254
nmap_syn_scan = "y" ' Tcp Syn scan
nmap_udp_scan = "y" ' UDP scan
nmap_srv_ver_scan = "y" ' Service version detection.
nmap_srv_ver_int = 9 ' Service version detection intensity level. Values 0-9, 0=fast
I then go to Audits menu, click on manage audits and create a new audit configuration after which I run it and all I get is:
Quote:
Failed to run: Test (126)
Can someone please help, I tried to do it via a logon script but that went just as bad.
Oh I'm running OA Version 09.12.23, Ubuntu 8.04 and Server 2008 R2