{"id":709,"date":"2018-09-30T18:04:07","date_gmt":"2018-09-30T15:04:07","guid":{"rendered":"http:\/\/kifarunix.com\/?p=709"},"modified":"2024-03-11T19:32:13","modified_gmt":"2024-03-11T16:32:13","slug":"how-to-configure-availability-monitoring-on-alienvault-usm-ossim","status":"publish","type":"post","link":"https:\/\/kifarunix.com\/how-to-configure-availability-monitoring-on-alienvault-usm-ossim\/","title":{"rendered":"Configure Availability Monitoring on AlienVault USM\/OSSIM using Nagios"},"content":{"rendered":"\n<p>In this guide, we are going to learn how to configure availability Monitoring on AlienVault USM\/OSSIM using Nagios. <a href=\"https:\/\/cybersecurity.att.com\/products\/ossim\" target=\"_blank\" rel=\"noreferrer noopener\">AlienVault OSSIM<\/a> is a feature-rich, open-source security information and event management (SIEM) that includes event collection, normalization, and correlation.&nbsp;It uses Nagios for host and service monitoring.<\/p>\n\n\n\n<div class=\"wp-block-rank-math-toc-block\" id=\"rank-math-toc\"><h2>Table of Contents<\/h2><nav><ul><li><a href=\"#alien-vault-usm-ossim-nagios-configuration\">AlienVault USM\/OSSIM Nagios Configuration<\/a><ul><li><a href=\"#create-custom-directory-for-custom-nagios-configurations\">Create Custom Directory for Custom Nagios Configurations<\/a><\/li><li><a href=\"#create-contact-and-contact-group-object-definition\">Create Contact and Contact group Object Definition<\/a><\/li><li><a href=\"#create-host-and-service-template-configuration\">Create Host and Service Template Configuration<\/a><\/li><li><a href=\"#create-monitoring-hosts-and-hosts-groups\">Create Monitoring Hosts and Hosts Groups<\/a><\/li><li><a href=\"#nagios-command-definition\">Nagios Command Definition<\/a><\/li><li><a href=\"#install-nrpe-plugins-on-alien-vault-usm-ossim\">Install NRPE Plugins on AlienVault USM\/OSSIM<\/a><\/li><li><a href=\"#define-host-services-for-monitoring\">Define Host Services for Monitoring<\/a><\/li><li><a href=\"#install-nagios-nrpe-and-ns-client-monitoring-agents-on-the-hosts\">Install Nagios NRPE and NSClient Monitoring Agents on the Hosts<\/a><\/li><li><a href=\"#test-the-plugins\">Test the Plugins<\/a><ul><li><a href=\"#linux-hosts\">Linux Hosts<\/a><\/li><li><a href=\"#windows-hosts\">Windows Hosts<\/a><\/li><\/ul><\/li><li><a href=\"#restart-nagios-on-ossim\">Restart Nagios on OSSIM<\/a><\/li><li><a href=\"#verify-nagios-availability-monitoring-on-alien-vault-usm-ossim\">Verify Nagios Availability Monitoring on AlienVault USM\/OSSIM<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"alien-vault-usm-ossim-nagios-configuration\">AlienVault USM\/OSSIM Nagios Configuration<\/h2>\n\n\n\n<p>We will cover how to configure host as well as service availability monitoring.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Host monitoring reports whether an asset is up or down<\/li>\n\n\n\n<li>Services monitoring discovers services on an asset and monitors their availability.<\/li>\n<\/ul>\n\n\n\n<p>AlienVault uses Nagios by default for host availability monitoring and it thus comes&nbsp;pre-configured with basic Nagios settings.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"create-custom-directory-for-custom-nagios-configurations\">Create Custom Directory for Custom Nagios Configurations<\/h3>\n\n\n\n<p>The default Nagios configuration settings are located at <code>\/etc\/nagios3\/conf.d<\/code>\/. AlienVault has made the configuration of Nagios hosts, host services, hostsgroup or even the hostgroup services a bit easier. However, you can create your custom configuration directory under the <code>\/etc\/nagios3\/conf.d<\/code> directory if you do not want to use the default Nagios configurations, for example;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>mkdir \/etc\/nagios3\/conf.d\/myenv-configs<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"create-contact-and-contact-group-object-definition\">Create Contact and Contact group Object Definition<\/h3>\n\n\n\n<p>A <strong>contact definition<\/strong> is used to identify someone who should be contacted in the event of a problem on your network while <strong>contact group definition<\/strong> is used to define all the people who get notified when certain host or service problems occur.<\/p>\n\n\n\n<p>Create your custom contact definition configuration file with the following contents.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>vim \/etc\/nagios3\/conf.d\/myenv-configs\/contacts.cfg<\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\n# With CONTACT DEFINITION, a single contact will receive all alerts.\ndefine contact{\n        name                            myevn-contact  <strong>&lt;name of the contact template&gt;<\/strong>\n        service_notification_period     24x7\n        host_notification_period        24x7\n        service_notification_options    w,u,c,r\n        host_notification_options       d,r\n        service_notification_commands   notify-service-by-email\n        host_notification_commands      notify-host-by-email\n        register                        0\n        }\n# Define Individual Contact\ndefine contact{\n        contact_name                    johndoe\n        use                             myevn-contact\n        alias                           John Doe-Oracle DBA\n        email                           jdoe@example.com\n        }\ndefine contact{\n        contact_name                    amos\n        use                             myevn-contact\n        alias                           Amos Mibey-System Admin\n        email                           amibey@example.com\n        }\n# CONTACT GROUP DEFINITION allows multiple contacts to receive alerts\ndefine contactgroup{\n        contactgroup_name    admins\n        alias                Sys-DB Admins\n        members              johndoe,amos <strong>&lt;names of the members as defined on contacts object&gt;<\/strong>\n       }\n<\/code><\/pre>\n\n\n\n<p>NOTE: multiple email contacts as well as contact group members can be defined by separating them with comma.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"create-host-and-service-template-configuration\">Create Host and Service Template Configuration<\/h3>\n\n\n\n<p>Create a custom host and service definition template as shown below. This template will be used to define hosts&nbsp; that resides in your environment and specific services to be monitored within them. Note that this is just a template.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>vim \/etc\/nagios3\/conf.d\/myenv-configs\/<strong>hosts-service-template.cfg<\/strong><\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\n<strong># Host Template Definition<\/strong>\ndefine host{\nname                         <strong>myenv-host<\/strong>\nnotifications_enabled        1\nevent_handler_enabled        1\nflap_detection_enabled       1\nfailure_prediction_enabled   1\nprocess_perf_data            1\nretain_status_information    1\nretain_nonstatus_information 1\n        check_command                check-host-alive\n        normal_check_interval        5\n        max_check_attempts           2\n        notification_interval        0\n        notification_period          24x7\n        notification_options         d,u,r\n        contact_groups               admins <strong>&lt; as defined in contacts &gt;<\/strong>\nregister                     0\n}\n\n<strong># Service Template definition<\/strong>\ndefine service{\nname                         <strong>myenv-service<\/strong>\nactive_checks_enabled        1\npassive_checks_enabled       1\nparallelize_check            1\nobsess_over_service          1\ncheck_freshness              0\nnotifications_enabled        1\nevent_handler_enabled        1\nflap_detection_enabled       1\nfailure_prediction_enabled   1\nprocess_perf_data            1\nretain_status_information    1\nretain_nonstatus_information 1\n        notification_interval        0\n        is_volatile                  0\n        check_period                 24x7\n        normal_check_interval        5\n        retry_check_interval         1\n        max_check_attempts           2\n        notification_period          24x7\n        notification_options         w,u,c,r\n        contact_groups               admins <strong>&lt; as defined in contacts &gt;<\/strong>\nregister                     0\n}\n<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"create-monitoring-hosts-and-hosts-groups\">Create Monitoring Hosts and Hosts Groups<\/h3>\n\n\n\n<p>Next, you need to create a configuration files defining the hosts to be monitored. You may also group the hosts based on their functionality to make it easier to view the status of related hosts in the Nagios web interface and monitor services of the related hosts as a group.<\/p>\n\n\n\n<p>As stated above, AlienVault makes this step easier as this can be done automatically from the Web UI. Therefore, login to AlienVault UI and navigate to <strong>Environment &gt; Assets and Groups<\/strong>. To enable availability monitoring of a single host, select the host under <strong>Assets<\/strong>. Under <strong>Actions<\/strong>, enable availability&nbsp; monitoring. See screenshot below;<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"965\" height=\"289\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-a-single-host.png\" alt=\"configure availability Monitoring on AlienVault USM\/OSSIM using Nagios\" class=\"wp-image-1782\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-a-single-host.png 965w, https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-a-single-host-768x230.png 768w\" sizes=\"(max-width: 965px) 100vw, 965px\" \/><\/figure>\n\n\n\n<p>This will automatically create a configuration file called <code>ossim-configs<\/code> under the <code>\/etc\/nagios3\/conf.d\/<\/code>.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>ls -1 \/etc\/nagios3\/conf.d\/ossim-configs<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>host-services \nhostgroup-services \nhostgroups\nhosts<\/code><\/pre>\n\n\n\n<p>The host definition configuration file for our host enabled for monitoring above, will be located under <code>hosts<\/code> directory.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cat \/etc\/nagios3\/conf.d\/ossim-configs\/hosts\/192.168.57.22.cfg<\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\ndefine host{\n\thost_name hr-server\n\talias hr-server\n\taddress 192.168.57.22\n\t<strong>use generic-host   &lt; you can change this to reflect you custom template ><\/strong>\n\t}\n<\/code><\/pre>\n\n\n\n<p>If you need to enable availability monitoring for a group servers, select multiple hosts and add to an existing group or create a new group for them.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"960\" height=\"284\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-multiple-hosts.png\" alt=\"\" class=\"wp-image-1786\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-multiple-hosts.png 960w, https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-multiple-hosts-768x227.png 768w\" sizes=\"(max-width: 960px) 100vw, 960px\" \/><\/figure>\n\n\n\n<p>As you can see below, enter the name of the group, for example, Linux Servers and click the + button to create the group. You should now able to view your Server group under the Asset Groups.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"716\" height=\"320\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/create-hosts-group.png\" alt=\"\" class=\"wp-image-1784\" title=\"\"><\/figure>\n\n\n\n<p>Once the group is created, enable availability monitoring. See screenshot below.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1154\" height=\"435\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-assetgroup.png\" alt=\"\" class=\"wp-image-1787\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-assetgroup.png 1154w, https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/enable-availability-for-assetgroup-768x289.png 768w\" sizes=\"(max-width: 1154px) 100vw, 1154px\" \/><\/figure>\n\n\n\n<p>If you can check, this will automatically create individual host definition configuration file as well as the hostgroup definition file.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>ls -1 \/etc\/nagios3\/conf.d\/ossim-configs\/hosts\/<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>192.168.43.154.cfg\n192.168.43.200.cfg\n192.168.43.63.cfg\n192.168.57.22.cfg<\/code><\/pre>\n\n\n\n<p>To check the hostgroup definition file;<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cat \/etc\/nagios3\/conf.d\/ossim-configs\/hostgroups\/Linux\\ Servers.cfg <\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>define hostgroup{\n\thostgroup_name Linux Servers\n\talias Linux Servers\n\t<strong>members linuxservera,hr-server,solaris,ubuntu<\/strong>\n\t}<\/code><\/pre>\n\n\n\n<p>Also note that these configuration files can be deleted anytime you disable availability monitoring for a single host or hostgroup.<\/p>\n\n\n\n<p>If however you need permanent configurations that cannot be overwritten, you can create your own custom host and hostgroup definition configurations. See the example below;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>vim \/etc\/nagios3\/conf.d\/myenv-configs\/hosts-hostgroups.cfg<\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\n<strong># Hosts Definition<\/strong>\ndefine host {\n        use       myenv-host        &lt; <strong>host template<\/strong>\n        host_name servera.example.com\n        alias     Test Server A\n        address   192.168.43.63\n}\n\ndefine host {\n        use       myenv-host\n        host_name serverb.example.com\n        alias     Test Server B\n        address   192.168.43.218\n}\n<strong># HostGroups Definition<\/strong>\ndefine hostgroup{\n        hostgroup_name LinuxServers\n        alias          Linux Server\n        members        servera.example.com\n}\ndefine hostgroup{\n        hostgroup_name WindowsServers\n        alias          WindowsServer\n        members        serverb.example.com\n}\n<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"nagios-command-definition\">Nagios Command Definition<\/h3>\n\n\n\n<p>Nagios commands defines the scripts or programs that Nagios should execute against a host in order to perform host and service checks, notifications, event handlers etc. In this tutorial, we are going to use two plugins to monitor remote hosts: <code>check_nrpe<\/code> and <code>check_nt<\/code>.<\/p>\n\n\n\n<p><code>check_nrpe<\/code>will be used to monitor remote Unix hosts while <code>check_nt<\/code> will be used to monitor Windows hosts.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>vim \/etc\/nagios3\/conf.d\/myenv-configs\/host-commands.cfg<\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\n<strong># Command Definition<\/strong>\ndefine command{\n        command_name check_nrpe_all\n        command_line \/usr\/lib\/nagios\/plugins\/check_nrpe -H $HOSTADDRESS$ -c $ARG1$\n}\n\ndefine command{\n        command_name check_nt1\n        command_line \/usr\/lib\/nagios\/plugins\/check_nt -H $HOSTADDRESS$ -p 12489 -s <strong>PASSWORD<\/strong> -v $ARG1$ $ARG2$\n}\n<\/code><\/pre>\n\n\n\n<p>Note the password and the port set for the check_nt command. The agent on the host should be set with the same password.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"install-nrpe-plugins-on-alien-vault-usm-ossim\">Install NRPE Plugins on AlienVault USM\/OSSIM<\/h3>\n\n\n\n<p>The NRPE plugins are not included by default on AlienVault USM\/OSSIM. Thus run the command below to install;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>apt-get install nagios-nrpe-plugin<\/code><\/pre>\n\n\n\n<p>The check_nrpe command should now be available under <code>\/usr\/lib\/nagios\/plugins\/<\/code>.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"define-host-services-for-monitoring\">Define Host Services for Monitoring<\/h3>\n\n\n\n<p>Services are one of the central objects in the monitoring logic. Services are associated with hosts and can be attributes of a host such as CPU load, disk usage, uptime,running processes, number of logged in users etc or services provided by the host such HTTP, POP3, FTP, SSH, etc.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>vim \/etc\/nagios3\/conf.d\/myenv-configs\/hosts-services.cfg<\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\n<strong># Services for Linux Servers<\/strong>\ndefine service\n        <span class=\"hljs-keyword\">use<\/span>                     myenv-service   &lt; <strong>service template<\/strong>\n        hostgroup_name          LinuxServers\n        service_description     Logged <span class=\"hljs-keyword\">in<\/span> <span class=\"hljs-keyword\">Users<\/span>\n        check_command           check_nrpe_all!check_users\n        }\n<span class=\"hljs-keyword\">define<\/span> service{\n        <span class=\"hljs-keyword\">use<\/span>                     myenv-service\n        hostgroup_name          LinuxServers\n        service_description     Disk <span class=\"hljs-keyword\">Usage<\/span>\n        check_command           check_nrpe_all!check_disk\n        }\n<span class=\"hljs-keyword\">define<\/span> service{\n        <span class=\"hljs-keyword\">use<\/span>                     myenv-service\n        hostgroup_name          LinuxServers\n        service_description     Swap <span class=\"hljs-keyword\">Memory<\/span>\n        check_command           check_nrpe_all!check_swap\n        }\n<span class=\"hljs-keyword\">define<\/span> service{\n        <span class=\"hljs-keyword\">use<\/span>                     myenv-service\n        hostgroup_name          LinuxServers\n        service_description     CPU <span class=\"hljs-keyword\">Load<\/span>\n        check_command           check_nrpe_all!check_load\n        }\n\n<span class=\"hljs-keyword\">define<\/span> service{\n        <span class=\"hljs-keyword\">use<\/span>                     myenv-service\n        hostgroup_name          LinuxServers\n        service_description     Running Procs\n        check_command           check_nrpe_all!check_procs\n        }\n<strong># Services <span class=\"hljs-keyword\">for<\/span> Windows<\/strong>\n<span class=\"hljs-keyword\">define<\/span> service{\n        <span class=\"hljs-keyword\">use<\/span>                     myenv-service\n        hostgroup_name          WindowsServers\n        service_description     Disk <span class=\"hljs-keyword\">Usage<\/span>\n        check_command           check_nt1!USEDDISKSPACE!-l c -w <span class=\"hljs-number\">80<\/span> -c <span class=\"hljs-number\">90<\/span>\n        }\n<span class=\"hljs-keyword\">define<\/span> service{\n        <span class=\"hljs-keyword\">use<\/span>                     myenv-service\n        hostgroup_name          WindowsServers\n        service_description     <span class=\"hljs-keyword\">Memory<\/span> <span class=\"hljs-keyword\">Usage<\/span>\n        check_command           check_nt1!MEMUSE!-w <span class=\"hljs-number\">80<\/span> -c <span class=\"hljs-number\">90<\/span>\n        }\n<span class=\"hljs-keyword\">define<\/span> service{\n        <span class=\"hljs-keyword\">use<\/span>                     myenv-service\n        hostgroup_name          WindowsServers\n        service_description     CPU <span class=\"hljs-keyword\">Usage<\/span>\n        check_command           check_nt1!CPULOAD!-l <span class=\"hljs-number\">5<\/span>,<span class=\"hljs-number\">80<\/span>,<span class=\"hljs-number\">90<\/span>\n        }\n<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"install-nagios-nrpe-and-ns-client-monitoring-agents-on-the-hosts\">Install Nagios NRPE and NSClient Monitoring Agents on the Hosts<\/h3>\n\n\n\n<p>To monitor the hosts, you need to install the monitoring agents on them. Check our other tutorials on the same using the links below;<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><a href=\"https:\/\/kifarunix.com\/monitoring\/how-to-install-nagios-nrpe-agent-on-rhel-centos-oracle-linux\/\" target=\"_blank\" rel=\"noopener\">How to Install Nagios NRPE Monitoring Agent on Linux Host From the Source<\/a><\/li>\n\n\n\n<li><a href=\"http:\/\/kifarunix.com\/security\/siem\/alienvault\/how-to-install-nsclient-nagios-monitoring-agent-on-windows-system\/\" target=\"_blank\" rel=\"noopener\">How to Install Nagios NSClient++ Monitoring Agent on Windows System<\/a><\/li>\n<\/ol>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"test-the-plugins\">Test the Plugins<\/h3>\n\n\n\n<p>Once you are done&nbsp; with the installation of the Nagios agents on the hosts, run the commands below to verify that NRPE is executing plugins correctly.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"linux-hosts\">Linux Hosts<\/h4>\n\n\n\n<p>For Linux Server, test for the load, logged in users, total running processes, swap by running the commands below.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>\/usr\/lib\/nagios\/plugins\/check_nrpe -H 192.168.43.63 -c check_load<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>OK - load average per CPU: 0.00, 0.01, 0.03|load1=0.000;8.000;11.000;0; load5=0.015;7.500;10.000;0; load15=0.025;7.000;9.000;0;<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>\/usr\/lib\/nagios\/plugins\/check_nrpe -H 192.168.43.63 -c check_users<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>USERS OK - 2 users currently logged in |users=2;5;10;0<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>\/usr\/lib\/nagios\/plugins\/check_nrpe -H 192.168.43.63 -c check_swap <\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>SWAP OK - 100% free (1022 MB out of 1023 MB) |swap=1022MB;0;0;0;1023<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>\/usr\/lib\/nagios\/plugins\/check_nrpe -H 192.168.43.63 -c check_procs<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>PROCS OK: 113 processes | procs=113;300;400;0;<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"windows-hosts\">Windows Hosts<\/h4>\n\n\n\n<p>For Windows systems, run the tests as follows;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>\/usr\/lib\/nagios\/plugins\/check_nt -H 192.168.43.218 -p 12489 -s STRONGPASSWORD -v CPULOAD -l 5,80,90<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>CPU Load 0% (5 min average) | '5 min avg Load'=0%;80;90;0;100<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>\/usr\/lib\/nagios\/plugins\/check_nt -H 192.168.43.218 -p 12489 -s STRONGPASSWORD -v USEDDISKSPACE -l c -w 80 -c 90<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>c:\\ - total: 34.08 Gb - used: 32.89 Gb (96%) - free 1.19 Gb (4%) | 'c:\\ Used Space'=32.89Gb;27.26;30.67;0.00;34.08<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>\/usr\/lib\/nagios\/plugins\/check_nt -H 192.168.43.218 -p 12489 -s STRONGPASSWORD -v MEMUSE -w 80 -c 90 <\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>Memory usage: total:2047.57 MB - used: 1079.53 MB (53%) - free: 968.04 MB (47%) | 'Memory usage'=1079.53MB;1638.06;1842.81;0.00;2047.57<\/code><\/pre>\n\n\n\n<p>Perfect, you are doing great.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"restart-nagios-on-ossim\">Restart Nagios on OSSIM<\/h3>\n\n\n\n<p>Before you can restart Nagios, run the command below to check for any errors in the configuration files.<\/p>\n\n\n\n<p>If you encounter any error, fix it&nbsp; before you can restart Nagios.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>nagios3 -v \/etc\/nagios3\/nagios.cfg<\/code><\/pre>\n\n\n\n<p>If everything is okay, you should see the sample&nbsp;output below;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code><strong>...output cut...<\/strong>\n\n<strong>Total Warnings: 0<\/strong>\n<strong>Total Errors: 0<\/strong>\n\n<strong>Things look okay - No serious problems were detected during the pre-flight check<\/strong><\/code><\/pre>\n\n\n\n<p>Run the command below to restart nagios service<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>\/etc\/init.d\/nagios3 restart<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"verify-nagios-availability-monitoring-on-alien-vault-usm-ossim\">Verify Nagios Availability Monitoring on AlienVault USM\/OSSIM<\/h3>\n\n\n\n<p>Login to AlienVault UI and navigate to Availability monitoring page to check the status of the hosts. After a few minutes, you should be able to see status of each host.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1403\" height=\"704\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/availability-status.png\" alt=\"\" class=\"wp-image-782\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/availability-status.png 1403w, https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/availability-status-768x385.png 768w\" sizes=\"(max-width: 1403px) 100vw, 1403px\" \/><\/figure>\n\n\n\n<p>You can click on the specific server to see service status details.<\/p>\n\n\n\n<p>Linux Server status details<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1452\" height=\"731\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/lin-service-status-details.png\" alt=\"\" class=\"wp-image-783\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/lin-service-status-details.png 1452w, https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/lin-service-status-details-768x387.png 768w\" sizes=\"(max-width: 1452px) 100vw, 1452px\" \/><\/figure>\n\n\n\n<p>Windows Server status details<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1465\" height=\"610\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/win-service-status-details.png\" alt=\"\" class=\"wp-image-784\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/win-service-status-details.png 1465w, https:\/\/kifarunix.com\/wp-content\/uploads\/2018\/09\/win-service-status-details-768x320.png 768w\" sizes=\"(max-width: 1465px) 100vw, 1465px\" \/><\/figure>\n\n\n\n<p>Phew!!, that is all about how to configure availability monitoring on AlienVault USM or OSSIM using Nagios.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In this guide, we are going to learn how to configure availability Monitoring on AlienVault USM\/OSSIM using Nagios. AlienVault OSSIM is a feature-rich, open-source security<\/p>\n","protected":false},"author":1,"featured_media":16630,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rank_math_lock_modified_date":false,"footnotes":""},"categories":[121,103,72,73],"tags":[104,6682,143,6683,75,6684],"class_list":["post-709","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-howtos","category-alienvault","category-monitoring","category-nagios","tag-alienvault","tag-alienvault-nagios-monitoring","tag-availability-monitoring","tag-linux-monitoring-using-nagios","tag-nagios","tag-windows-monitoring-using-nagios","generate-columns","tablet-grid-50","mobile-grid-100","grid-parent","grid-50","resize-featured-image"],"_links":{"self":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/709"}],"collection":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/comments?post=709"}],"version-history":[{"count":24,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/709\/revisions"}],"predecessor-version":[{"id":20979,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/709\/revisions\/20979"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/media\/16630"}],"wp:attachment":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/media?parent=709"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/categories?post=709"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/tags?post=709"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}