Home > Windows Applications > Web Tracks Audit
Web Tracks Audit
Executable Name: WTAudit.exe
Default Location: C:\Program Files\Gritware\Web Tracks\WTAudit
Requirements: .Net Framework Version 2.0 or higher
Purpose: Perform unattended Audits, Audit single workstations, Audit computers in different domains, Import Audit Files.
Remarks: WTAudit.exe may be copied to other computers meeting the above requirements.
COMMAND LINE PARAMETERS:
MODE
NORMAL
|
Audit runs and user must press Close to end the program.
|
SILENT
|
Audit runs hidden and closes when completed
|
AUTO_CLOSE
|
Audit runs visible but closes when completed
|
LDAP
|
Triggers an Audit Based on a Custom LDAP Query. In this mode all other parameters are required. The audit is run silently in this mode.
|
IMPORT
|
Open a graphical user interface used to import XML files into the database. The WEB_SERVICE_URL parameter is required for IMPORT mode.
|
WEB_SERVICE_URL
The URL to the Web Tracks Web Service
Example: WEB_SERVICE_URL=http://YourServer/WebTracks/Services/WebTracksServices.asmx
NOTE: This parameter is required when the MODE is set to LDAP or IMPORT. If this parameter is SET for NORMAL, SILENT, OR AUTO_CLOSE the program will use the Web Service to record the audit directly to the Web Tracks database. If this parameter is not supplied the audit will be written to a file named <ComputerName>.xml.
LDQ (Only applies and is required when MODE=LDAP)
This must be a valid LDAP Query String or the Hostname of a single computer to Audit.
Examples:
LDQ= LDAP://DC=yourdomain,DC=com
|
Retrieves all computers from the yourdomain.com domain
|
LDQ= LDAP://MYLDAPSERVER
|
Retrieves all computers listed on the MYLDAPSERVER server
|
LDQ=LDAP://OU=IT,DC=hq,DC=yourdomain,DC=com
|
Retrieves computer from the IT organizational unit in the domain hq.yourdomain.com
|
“LDQ= LDAP://OU=Accounting,OU=Finance,DC=hq,DC=yourdomain,DC=com”
|
Retrieves computers from the Accounting organizational unit contained within the Finance organizational unit in the domain hq.yourdomain.com. Note the quotation marks surrounding the entire parameter. This is required if your LDAP Query contains spaces.
|
NOTE: The order of the items is important. For example if you have an Organizational Unit Named Accounting that contains the Organizational Units Accounts Payable and Accounts Receivable you would need to list the end node of the tree first and work your way up. The valid order for the tags is OU, then DC.
(Correct)
LDAP://OU=Accounts Payable,OU=Accounting,DC=yourdomain,DC=com
(Incorrect)
LDAP://OU=Accounting,OU=Accounts Payable,DC=yourdomain,DC=com
USERID (Only applies and is required when MODE=LDAP)
A User ID with Administrative Access to the computers in the LDAP Query
DOMAIN (Only applies and is required when MODE=LDAP)
The Domain of the USERID
PASSWORD (Only applies and is required when MODE=LDAP)
The Password of the USERID in the specified DOMAIN
REAUDIT (optional – default is true – only applies when MODE=LDAP)
If set to true the Audit process will update computer records contained in the LDAP Query which are already in the Web Tracks Database. If this value is set to False the Audit process will only audit computers found in the LDAP query which do not currently exist in the Web Tracks database.
CONCURRENT (optional – default is 4 – only applies when MODE=LDAP)
Specifies the number of audits to run concurrently (valid values 1-10)
EMAIL (optional – only applies when MODE=LDAP)
If an email address is supplied a summary report will be mailed to this address upon completion of the audit. For this option to work make sure you have configured the Email Settings (Mail Server Tab) from Web Tracks in the Admin section.
EXAMPLES:
Use this example to audit all computers in your domain and email a summary report to myemail@myDomainName.com:
WTAudit.exe MODE=LDAP LDQ=LDAP://MYDOMAINNAME USERID=myUserID DOMAIN=myDomainName PASSWORD=myPassword EMAIL=myemail@myDomainName.com WEB_SERVICE_URL=http://YourServer/WebTracks/Services/WebTracksServices.asmx
Use this example to create an XML audit file on the computer which the program is running. You may want to run the audit program in this manner when the computer does not have access to the Web Tracks website.
WTAudit.exe
Use this example to Audit computers which do not currently exist in the Web Tracks database from the Accounting organizational unit contained within the Finance organizational unit in the domain hq.yourdomain.com:
WTAudit.exe MODE=LDAP LDQ= LDQ= LDAP://OU=Accounting,OU=Finance,DC=hq,DC=yourdomain,DC=com USERID=myUserID DOMAIN=myDomainName PASSWORD=myPassword EMAIL=myemail@myDomainName.com REAUDIT=FALSE WEB_SERVICE_URL=http://YourServer/WebTracks/Services/WebTracksServices.asmx
This sample will silently audit the computer on which the program is running and automatically record the information to the database.
WTAudit.exe MODE=SILENT WEB_SERVICE_URL=http://YourServer/WebTracks/Services/WebTracksServices.asmx
AUTOMATING:
The real power of MTAudit.exe in LDAP mode comes from automating the audit process. To automate this process, simply copy the command into a batch files (e.g., audit.bat). You can then create a scheduled task to run this batch file. See How to Schedule Tasks for additional information.
RUNNING WTAUDIT.EXE FROM A REMOTE DRIVE
The audit program was written in .NET and conforms to the managed code security enforced by Windows Operating Systems. Due to the fact that the audit program reads registry information the application must run as 'FullTrust'. By default applications which are executed from a local file path on the computer receive FullTrust. For this reason we recommend auditing computers that are not on your network using a USB flash drive or other portable disk.
If you wish to run WTAudit.exe from a disconnected network you will need to elevate the share from which the program will be run to a 'FullTrust' share. Below are the steps to enable a computer to fully trust managed code from a network share…
1. Open a command prompt
2. Type "cd %windir%\Microsoft.Net\Framework\2.0.50727
3. Type "CasPol.exe -m -ag 1.2 -url file://\\YourServer/YourMtAuditShare/* FullTrust"
For more information on caspol.exe visit…
http://blogs.msdn.com/shawnfa/archive/2004/12/30/344554.aspx
See also
|