Identity Audit
Identity Audit solutions for reporting and
monitoring of identity controls, user
behavior and the power given to users
[ Policing the Power] of Identity
Controls
Security Mechanisms that
grant or deny access
Verify that controls
are in place and
functioning
Behavior
What Users are
actually doing
Monitor user behavior
and verify that
people are acting in
accordance with
policies
Power
What rights have been given
to users: Potential Risk
Report on user accounts, status
and group memberships to see
what users are empowered to do
on the network
Controls
Capabilities
Microsoft Windows
Novell NDS and eDirectory
- Active Directory Group Memberships
- File System
explicit or effective rights
- File System permissions
- eDirectory LDAP ACLs
- Active Directory GPOs
- eDirectory User Templates
- Monitor for accounts created
outside of provisioning process or
other controls
- Universal Password Snapin
- Prevent specific file types
* Specific platforms and versions should be verified for exact functionality
Behavior
Capabilities
Microsoft Windows
Novell NDS and eDirectory
- Active Directory account creations or
group membership changes
- Monitor account or group
creates, mods, deletes
- File System file or folder access
creates, mods, deletes
- Monitor eDirectory object ACL
changes
- Changes to file system permissions
- File System file or folder access,
creates, mods, deletes
(including specific file types)
- Changes to GPO policies
- Authentication Attempts &
failed logon attempts
- Authentication Attempts
* Specific platforms and versions should be verified for exact functionality
Power
Capabilities
Microsoft Windows
Novell NDS and eDirectory
- Active Directory group memberships
- Monitor account creations
- File System file or folder
explicit rights
- File System file or folder
explicit and effective rights
- Search for dormant accounts &
disable per policy
- Any object and attribute combination
(power based on user attributes)
- Any object and attribute combination
(power based on user attributes)
- Security Equivalence Reports
* Specific platforms and versions should be verified for exact functionality
Policing the Power of Identity
Since 1995
...with over 600 customers in 20 countries
www.NetVision.com