Chat now with support

Get Live Help
Complete Registration

Sign In

Request Pricing

Contact Sales

Change Auditor 7.1.1 - Installation Guide

Table of Contents

Installation Overview

Before you begin System requirements System statistics and facilities System overview Installation overview

Install Change Auditor

Installation workflow Install the first coordinator Install the client Install multiple coordinators

Add Users to Change Auditor Security Groups

Introducing Change Auditor security groups Add accounts to security groups Add accounts to ChangeAuditor database role

Connecting to the Clients

Connect to the client Open the web client Access product information

Deploy Change Auditor Agents

Change Auditor agents Deploy agents

Upgrade Change Auditor

Pre-upgrade considerations Upgrade Change Auditor

Step 1: Upgrade all coordinators (and database schema) Step 2: Upgrade all clients Step 3: Upgrade the agents

Post upgrade considerations

Installation Notes and Best Practices

Licensing Change Auditor products Permissions Other installation notes Change Auditor for Windows File Servers Change Auditor for Exchange Change Auditor for Authentication Services Change Auditor for SharePoint

Agent deployment

Backup notes Agent behavior notes Client notes ADAM (AD LDS) auditing Change Auditor for SQL Server — SQL auditing

Multi-Forest Deployments

Multi-forest deployment requirements Installation example Configuration

Audit and protection configuration flow Event flow Reports and queries from the client

Foreign Forest Agent Deployment

Supported functionality Deploying foreign forest agents Requirements

Workflow Harvesting the Foreign Forest Topology Deploying agents to a foreign forest Installing agents in a foreign forest Connecting to a different foreign forest/updating credentials Example deployment scenario

Workstation Agent Deployment

Recommendations and deployment requirements Manual workstation agent deployment Deploying workgroup agents (non-domain workstations)

Agent Comparison Install an agent to audit ADAM (AD LDS) on workgroup servers Active Roles Integration

Requirements Deploying Change Auditor/Active Roles integration scripts Client components added to Change Auditor Removing deployed Change Auditor/Active Roles integration scripts Troubleshooting Tips

Quest GPOADmin Integration

Requirements GPOADmin and Change Auditor integration process Client components added to Change Auditor Troubleshooting tips

Windows Installer Command Line Options

Agent options Coordinator options Web Client options

Client notes

Disabled audit events

Some events are disabled by default to improve the initial deployment process and reduce the amount of audited event information initially collected. These audited events can easily be enabled on the Audited Events page of the Administration Tasks tab.

See the appropriate Event Reference Guide for a list of the events that are disabled by default.

Enabling encrypted SQL Server connections

By default, connections to a SQL Server are not encrypted; however to encrypt all data transmitted between an application computer and a computer running a SQL Server instance, you can use the Secure Sockets Layer (SSL). For more details on configuring client network protocols, see the following Microsoft article: http://msdn2.microsoft.com/en-us/library/ms190425.aspx

ADAM (AD LDS) auditing

Monitoring ADAM (AD LDS) instances on workgroup servers

Run the appropriate Change Auditor Agent.msi file on the workgroup server to install an agent to monitor ADAM (AD LDS) instances on nondomain servers. See Install an agent to audit ADAM (AD LDS) on workgroup servers for more information.

Change Auditor for SQL Server — SQL auditing

Auditing events on SQL Server

Due to a Microsoft hotfix, agents do not capture SQL-related events unless the following action is taken on the SQL Server:

•

Using SQL Server Configuration Manager, add a startup parameter called ‘-T1906’ on the Startup Parameters tab in the SQL Server Properties dialog.

•

Restart the SQL Server service.

SQL Server auditing for Itanium platform — Not supported

Auditing of SQL Servers running on Itanium platforms is not supported.

Multi-Forest Deployments

Change Auditor can be configured to audit and report on one or many Active Directory forests to facilitate searching for compliance audit data over multiple forests.

This section covers the following multi-forest deployment topics:

•

Multi-forest deployment requirements

•

Installation example

•

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating

© ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center