Open-AudIT Glossary

A software component installed on a device to collect data and send it back to Open-AudIT.

A method of collecting device data without installing any software on the target device.

A physically isolated network not connected to the internet, often used in secure environments like government and defence.

A comprehensive listing of all hardware, software, and network devices discovered and cataloged by Open-AudIT.

A compiled record of discovered assets, changes, and compliance checks generated by Open-AudIT.

Establishing a reference point of device configurations or network state to compare future changes.

Scheduled comparison of device configurations over time to detect any changes in the network environment.

Any virtual resource hosted in a cloud environment, such as AWS EC2 or Azure VMs, and monitored by Open-AudIT.

Configuration Management Database — a repository that acts as a data warehouse for IT installations, populated via Open-AudIT.

An instance of Open-AudIT used to gather data from a specific network segment, often in distributed or MSP environments.

Predefined rulesets in Open-AudIT used to measure devices against regulatory or organizational standards.

The divergence of a device's current state from its intended, documented, or baseline configuration.

The practice of handling device settings and policies to maintain network integrity and compliance.

The process of securely storing and rotating login credentials used to access network devices for auditing.

The total time a device has been running without interruption, often used to assess stability and performance.

A recurring task in Open-AudIT that scans for new devices and changes to existing ones on the network.

An approved device configuration state used as a reference to detect configuration drift.

An international standard outlining best practices for information security management systems (ISMS).

The process of automatically identifying all devices on a network, including their configurations and relationships.

The process of addressing and resolving detected issues, such as security risks or misconfigurations. In Open-AudIT, this is limited to detection and reporting, not automated rollback or push configuration.

A system of assigning permissions to users based on their roles within the organization.

Simple Network Management Protocol, used to communicate with network devices.

Refers to adherence to the Sarbanes-Oxley Act, requiring visibility and control over financial IT systems.

Secure Shell, a protocol used to securely access and audit Unix/Linux devices over a network.

A standard for message logging that allows network devices to send log data to a central server.

A security process that identifies known vulnerabilities in network devices, often integrated via external tools.