Introduced in 8.6
Updated in 2022.1
The Remote Audit is a method of WAN audit, based on the deployment of standalone audit agents to a remote network. With this method, you can regularly audit offsite computers and remote networks that have no direct connection to the local network. Depending on the way how audit snapshots are delivered to Alloy Discovery, the Remote Audit method comes in two modes: FTP delivery and email delivery. This article is about FTP delivery.
The Remote Audit method offers two deployment scenarios for audit agents:
Install the audit agent to every remote computer.
This scenario works only for Windows computers.
Deploy the Inventory Analyzer package to a centralized location in the remote network and automate the audit agent using domain logon scripts or scheduled tasks.
This scenario works for Windows, Linux, and macOS computers; every platform requires an individual package.
When using this audit method, there is no direct link between the Inventory Server and deployed audit agents; this is why any configuration changes or updated versions of the audit agents have to be manually re-deployed.
Before configuring the audit, make sure you have configured a proper audit profile.
To set up the audit, take the following steps:
Make sure the Internet connectivity is available for transferring data
Create an FTP Audit Source as described in Configuring FTP Audit Sources.
NOTE: Before creating the FTP Audit Source, make sure that you know the settings of the FTP server on the remote network and have a valid user name and password if the server requires users to authenticate.
On the remote site, create a folder on the dedicated file server. This network folder will serve as an intermediary repository, and it must have both the Modify permission and the Change Permissions special permission assigned for your account. Share the folder and grant the Full Control share permission to the Everyone group for that network share.
Set the minimally necessary permissions for that shared folder. These minimally necessary permissions are used for the audit method to create the most secure environment for the network share and audit snapshot files stored there.
Choose how to deliver the audit agent to the computers you want audited. You can use any or both of these options:
Create an installer and install the audit agent on every Windows computer. For details, see Installing the Audit Agent for FTP Delivery.
Create one or more Inventory Analyzer packages, deploy them to remote networks, and automate the audit using domain logon scripts or scheduled tasks. For details, see Preparing the Inventory Analyzer Package for the FTP Delivery. You can use the automation scenarios offered for the Network Folder Audit; for details, see Network Folder Audit.
The remote audit runs on a schedule. If needed, you can check the audit source for new snapshots on demand. For instructions, see Checking FTP Audit Sources for New Snapshots.