Right now, I have a dilemma. I need to come up with a (hopefully) non-interactive solution to gather auditing and data collection on a number of Windows and RHEL servers we own in a private cloud environment (we are talking about 40+ servers in all).
On Windows servers, we are using a freeware tool called WinAudit. It gives us pretty much what we need to know (even though it's not an automated application).
However, on our RHEL servers, there is no application that we have found that can collect all the information we need (as seen above) and put this into a readable text file for each system. I was considering on using Spiceworks, but this application required root-permissive ssh access to the RHEL servers and due to our guidelines, the root account is not accessible via ssh directly (root is only accessible via 'sudo'). I was thinking of trying to use SNMP for each of the RHEL servers, but discovered there is a limitation as it cannot actually print out each of the configuration/variables I am seeking for audit needs.
So, I am looking for a script, series of scripts or even a program that can be run from a central collection server that can obtain the following information from RHEL servers for auditing purposes:
- Installed software version and patches
- Error logs (i.e. syslog)
- Server security related settings
-- Configured ports (i.e. open ports and what applications are hooked to them)
-- Configured services (i.e. running processes, apache, java, etc)
-- Configured networks (i.e. ethernet settings)
-- Configured firewall (i.e. iptables)
The first one could most likely be done with just running 'yum list installed' on each RHEL server instance.
The second one could possibly be done with a syslog-ng setup on each server, then reporting back to a main server.
As for the third, I have no idea how to even consider this one as the are many parts to it -- especially since the final output needs to be in a report-like format.
Anyone know a site or application or have a group of scripts that has something about what I am looking for? Also, if someone has a better solution for the Windows aspect, I would be willing to look at this as well.