This section describes the steps to audit PCs via
your network. For auditing servers, please refer to the section
Auditing your
server
What you need to know:
-
You do not need to install any software to any of your
PCs.
-
You do not need to install any software to your server.
-
You do not need to run any services on either your servers
or clients
-
All you need is two folders dedicated to E-Z Audit on a
server on your LAN, and to add one line to your logon script.
Step 1.
Create two folders on a server accessible to your users on
your network. For example, let's say your sever has its user folders on
the D:\ partition:
Create D:\ezaudit and below that
D:\ezaudit\audits.
In UNC convention, these become \\your_server_name\ezaudit and
\\your_server_name\ezaudit\audits from your user's perspective.
Assign these folders explicit Read, Write, Create,
Delete, Modify and Execute permissions (or their equivalents based on your
network operating system) to a group that all your users belong to, e.g.
Authenticated Users or Domain Users.
Ensure that the folders are not inheriting any Deny" rules from another
folder in the hierarchy.
Step 2.
In the E-Z Audit Admin Console what you installed to your PC
create a configuration file to tell the E-Z Audit Scanner Module what to do.
Access it via the Tools > Configure automated audits menu
For more information on what your configuration options
are, read the section Configure audits.
I can't see the path where E-Z Audit stores the configuration files, etc.
In Windows Vista or 7, open Windows Explorer and click the Organize button, then Folder and Search Options. Click the View tab and select the View
Hidden Files and Folders option.
Step 3.
Add one line to your logon script.
Please understand that we assume our customers are IT
professionals with working knowledge of their network operating systems. As
such we cannot educate you on how to implement or manage a logon script. Our
Troubleshooter for common issues arising when starting out with network
auditing covers many network specific issues and should be worked through if
you encounter any problems.
The examples below assume you have one configuration file with the default
name of config.ezc You can have more than one configuration at the same
time. These
advanced topics
are covered at
the end of this section.
Logon script commands to use:
First and foremost, some important tips to avoid the
most common problems:
-
The script
must be a logon script, not a startup script.
-
Assign the logon
script for E-Z Audit to the Users object and
not the Computers object.
If either or both of these are not observed, the audits will
not run.
If you use a simple batch file:
\\your_server_name\ezaudit\ezstart.exe" /auto
Assumes one configuration file or if more than one, defaults
to config.ezc
\\your_server_name\ezaudit\ezstart.exe" /auto
cfg-filename.ezc
The cfg- switch tells E-Z Audit to use 'filename.ezc'
If you also want to run E-Z Audit On-Demand add:
\\your_server_name\ezaudit\ondemand.exe"
If you ONLY want to run E-Z Audit On-Demand do
not launch ezstart.exe and just use the ondemand.exe command line.
Here is a VBScript example:
If you use third-party tools like KixTart or another
NOS, check their support or documentation on running logon scripts. We
cannot support other vendors' programs, including Microsoft and have to
assume you have familiarity with logon scripts.
Advanced Topics:
Excluding PCs from being audited
If you have any PCs that you do not want audited, create a plain text file
using Notepad and add one PC name per line and save the file as pcex.txt
Place this file into the same folder as ezstart.exe and ezscan.exe on your
server and these PCs will be ignored by the scanner.
Add an additional switch to your command,
/excludelist. For example:
ezstart.exe /auto /excludelist
Or, if you are using an alternate configuration file:
ezstart.exe /auto /excludelist cfg-yourfilename.ezc
