Change Tracker Gen7 R2 FAQs
Welcome to the Change Tracker Enterprise Gen 7 FAQs - if you cant find what you are looking for, or if you just prefer to ask a human being your question, please mail us at [email protected] - we've probably got the answer you want!
What compliance standards does Generation 7 support?
Change Tracker Generation supports the following compliance standards:
Compliance standards supported by Change Tracker generation 7 include PCI DSS, DISA STIG, NERC CIP, ISO 27001, GLBA), FISMA), HIPAA HITECH, S-OX, NIST 800-53 and GPG 13.
Adding a Compliance report to a Group - Change Tracker Generation 7
Click on a Device Group to edit the assigned Compliance Report and to set the reporting schedule
- To create a new Compliance Report template, use the Compliance Report Templates page
- To add additional Compliance Reports to a Device Group, just click the Schedule a New Report button
Click on a Device Group name to configure further attributes for the Group, such as>
- Device Tracking Policy
- Group Members, with the option to export a list of group Members
- Define the schedule for Agent Software Updates
Compliance Reports Templates Administration
As a Center for Internet Security (CIS) Certified Vendor, NNT provides configuration audit reports from the acknowledged industry-authority in secure configuration guidance, the CIS Benchmarks.
A large number of these are pre-packed with Change Tracker Gen 7 but additional templates are always being produced for new or updated platforms.
To import a new template or update an existing one, just upload the template, using the overwrite option if updating.
Can Change Tracker provide me with a list of all software and patches installed in my systems?
Yes. Once installed the Change Tracker agent gathers a comprehensive baseline of all installed software and patches. From this point all changes to existing software and the installation of new software and patches will be tracked.
Change Tracker isn't specifically designed an asset register but with a few simple clicks, information such as software name, version and installation path can gathered up and extracted into useful formats like MS Excel and Adobe Reader.
Install using an MSI
When installing an Agent though an MSI it can be done the various ways. One exmaple is instlling it through SCCM, another example is through Group policy. NNT can provide the necessary parameters via a transform file (MST) to work along side with the MSI package.
How to install an Agent via the Command Line
To install an agent using the command line, first, you start by changing the directory to the agent folder you have.
The next step is to make sure you bring up the NNTAgent.exe and then add the following parameters with the /s at the end for a silent install
USENEWHUB=true
HUBURL=https://yourChangeTrackerIPServerIPaddress/api
*make sure to use the /s for the silent install.
Devices Tab
The Device page provides a full summary of device details, group memberships, planned chnages and configuration monitoring policy applied, events and Compliance Reporting. To view the details of the configuration monitoring policy that is applied simply expand the file system under the Device Configuration section.
Event Filtering
Investigate and review and events from devices using powerful filter controls. Events can be filtered out to narrow down the search results of Planned Changes, Unplanned Changes etc. Planned changes can be added using such filtering as you see fit!
Events Page
Investigate and review and events from devices using powerful filter controls. Events can be acknowledged then used to create new Planned Changes. Select a device group or all devices to view events.Make sure the device group in the upper right hand corner shows 'All Devices' and you have the automatic refresh box checked to get the latest changes for the selected device every ten seconds.
First Logon of Generation 7
The default logon credentials for Generation 7 are admin/password and you will be prompted to change the password after your initial login.As with any system the default setting should be changed to avoid the exploit of known defaults.
What ports are used for Change Tracker Generation 7?
By default Change Tracker Generation 7 client machine uses Port 81 or 443 TCP Outbound to be open. On the NNT host machine or the Change Tracker Generaion 7 server Port 81 or 443 TCP Inbound/Outbound will need to be open
Any other port can be configured using HTTP or HTTPS communications by changing the IIS Settings.
What Platforms can Change Tracker Generation 7 be installed on?
Change Tracker Generation7 can be installed on either Microsoft Windows or Linux.
Microsoft Windows
- MIcrosoft Windows Server 2008 R2 any edition
- MIcrosoft Windows Server 2012 R2 any edition
Linux
- Centos 6.6 64 bit
What are the server specifications for a Linux installiation of Change Tracker Generation 7
These are the server specification for a Linux installation.
|
SYSTEM ELEMENT |
RECOMMENDED |
|
CPU |
QUAD CORE CPU OR 4 VCORES |
|
MEMORY |
8GB |
|
DISK FREE |
50GB Minimum |
|
OPERATING SYSTEM – 64BIT ONLY |
CENTOS 6.6 64 bit |
|
MONO FRAMEWORK |
VERSION 3.10 (Use either the Platform Manufacturer or NNT repository) |
|
WEB SERVER |
NGINX Version 1.6 (Use NNT Repo/ NNT RPM files) |
|
DATABASE |
MONGO V3.x Main Store* (Use NNT Repo/ NNT RPM files) |
What are the server Specifications for Generation 7 on Windows.
These are the server specification for a Microsoft windows installation.
|
SYSTEM ELEMENT |
RECOMMENDED |
|
CPU |
QUAD CORE CPU OR 4 VCORES |
|
MEMORY |
8GB |
|
DISK FREE |
50GB |
|
OPERATING SYSTEM – 64BIT ONLY |
WINDOWS SERVER 2008 R2 ANY EDITION, WINDOWSSERVER 2012R2 |
|
MICROSOFT .NET FRAMEWORK |
VERSION 4.5
|
|
MICROSOFT IIS ENABLED |
V7 UPWARDS |
|
DATABASE |
MONGO V3.x (Pre-Packed with Installer) |
