Tchater maintenant avec le support

Obtenir une aide instantanée
Terminer l’enregistrement

Se connecter

Demander les tarifs

Contacter le service des ventes

Change Auditor 7.4 - Quick Start Guide

Parcourir le contenu

Change Auditor Overview

Overview Business challenges Business solutions What is Change Auditor? How does Change Auditor work? System requirements

Install Change Auditor

Before you begin an installation Installation overview

Step 1: Install a coordinator Step 2: Install the client Step 3: Add user accounts to Change Auditor security groups Step 4: Start the client Step 5: Deploy agents

Change Auditor Walkthrough

Check agent status Change Auditor client overview Client walkthrough

Make changes to Active Directory and run a query Set up email alert notifications and reporting Enable email alerts for 'all events' Enable and schedule email reporting for 'all events'

Change Auditor for Active Directory

Audit custom user attributes Audit users based on their group membership

Change Auditor for Windows File Servers

Getting started Create a File System Auditing template Make file system changes and run a query

Change Auditor for Exchange

Getting started Make changes in Exchange and run a query Enable Exchange mailbox auditing

Customizing Change Auditor

Create a custom search Group and filter data Create a Change Auditor events list Exclude accounts from auditing

Change Auditor Product Specific Features

Our brand, our vision. Together. Contacting Quest Technical support resources

Change Auditor Overview

•

•

Business challenges

•

Business solutions

•

What is Change Auditor?

•

How does Change Auditor work?

•

System requirements

Overview

This guide has been prepared to assist you in installing and becoming familiar with Change Auditor. Even though most this content refers to Change Auditor for Active Directory, it also steps you through the process of setting up Quest Change Auditor for Exchange and Quest Change Auditor for Windows File Servers.

This guide is intended to be used to set up a test lab environment. It is not intended as a stand-alone guide and makes references to supporting product documentation that you should use when deploying the Change Auditor in your production environment.

Business challenges

Microsoft Active Directory is at the heart of your mission-critical network infrastructure. Do not leave Active Directory management, support, and administration to chance. Issues with your directory can result in unplanned and costly service disruptions and business-crippling network downtime, as well as harmful security breaches and noncompliance with critical government regulations such as Sarbanes-Oxley (SOX), Payment Card Industry (PCI), and Health Insurance Portability and Accountability Act (HIPAA). Organizations must be notified of critical changes to Active Directory.

Your file systems contain critical and sensitive information. Typically, it is difficult to track and enforce who has access to which documents and most violations of information security policies and misuse of access rights go undetected. Similar to Active Directory issues, issues with your file systems can also result in unplanned and costly service disruptions, business-crippling network downtime, harmful security breaches, and noncompliance with critical government regulations.

Email is used for communications within and between organizations. As a result, it serves as a repository of information — some of it sensitive and vulnerable to misuse. Many organizational policy violations go undetected because most security actions are not audited. This can result in lost productivity and system downtime — a risk no organization should take. Companies need in-depth auditing and reporting for Exchange security and compliance to prove regulatory compliance and drive efficiencies.

Business solutions

Change Auditor provides total auditing and security coverage for your enterprise network. Change Auditor audits the activities taking place in your infrastructure and, with real-time alerts, delivers detailed information about vital changes and activities as they occur. Instantly know who made the change including the IP address of the originating workstation, where and when it occurred along with before and after values. Then automatically turn that information into intelligent, in-depth forensics for auditors and management — and reduce the risks associated with day-to-day modifications.

Change Auditor uses a modular approach which allows for separate product deployment and management for key environments including Active Directory, Windows File Servers, and Exchange.

Change Auditor for Active Directory drives the security and control by tracking, auditing, reporting, and alerting on the changes that impact your directory including changes to users, groups, nested groups, GPOs, computer, services, registry, local users, and groups and DNS — without the overhead of system-provided auditing.

In addition, you can lock down critical Active Directory, ADAM (AD LDS), and Group Policy objects, to protect them from unauthorized or accidental modifications or deletions.

Change Auditor for Active Directory also audits activity in Microsoft Azure Active Directory.

Correlating activity across the on-premises and cloud directories, provides a single pane-of-glass view of your hybrid environment and makes it easy to search all events regardless of where they occurred.

Change Auditor for Windows File Servers enables administrators to achieve the comprehensive auditing coverage of system provided auditing tools without the mass of cumbersome data that system provided event logs generate. Change Auditor for Windows File Servers includes auditing for Windows file server activity related to files and folders, shares, and changes to permissions. Granular selection allows the auditing scope to be set on an individual file or folder and the entire subtree recursive or nonrecursive. Change Auditor for Windows File Servers also allows you to include or exclude certain files or folders from the audit scope to ensure a faster more efficient audit process.

Change Auditor for Windows File Servers also provides an access control model that permits administrators to protect business-critical files and folders on the file server.

Change Auditor for Exchange is the watchful eye that proactively tracks, audits, reports, and alerts on Exchange configuration and permission changes — without the need for system provided auditing. Change Auditor for Exchange audits for critical changes to Exchange including administrative groups, mailbox policies, public and private information store auditing, organizational changes such as ActiveSync mailbox policy changes, distribution list changes and more. Using the Exchange Mailbox Monitoring feature you can also audit for non-owner activity access and get complete visibility into these types of changes, including who accessed someone else’s mailbox, what message they accessed, and what they did with the message (read, delete, move, and so on). Continually being in-the-know helps you to prove compliance, drive security, and improve uptime while proactively auditing changes to Exchange Server configurations and permissions.

Through the Exchange Mailbox protection feature, you can prevent unwanted access to Exchange mailboxes, making it much more difficult for rogue administrators to access critical mailboxes.

You can also audit Office 365 Exchange Online configuration and permission changes.

Outils libre-service: Base de connaissances; Notifications et alertes; Support produits; Téléchargements de logiciels; Documentation technique; Forums utilisateurs; Didacticiels vidéo; Flux RSS

Nous contacter: Obtenir une assistance en matière de licence; Support Technique; Afficher tout

Documents connexes

The document was helpful.

Sélectionner une évaluation

I easily found the information I needed.

Sélectionner une évaluation

© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Conditions d’utilisation Confidentialité Cookie Preference Center