Back to Basics IT Infrastructure Configuration Tips & Tricks Active Directory / Group Policy / Exchange

Similar documents
Top Critical Changes to Audit

What s New in Netwrix Auditor 8.0. PRESENTER: Jeff Melnick Manager of Sales Engineering x 971

Product Overview. Netwrix Auditor. Presenter: Jeff Melnick Manager of Sales Engineering x 971

How to Survive an IT Audit and Thrive Off It!

Netwrix Auditor for File Servers and SQL Server

Top 7 Questions to Assess Data Security in the Enterprise

HOW TO MAXIMIZE THE VALUE OF YOUR SPLUNK INVESTMENT. PRESENTER: Adam Stetson Presales Engineer

Become an Active Directory Auditing Superstar: an all-in-one guide!

Withstanding Ransomware Attack: A Step-by-Step Guide Presenter:

Netwrix Auditor. Visibility platform for user behavior analysis and risk mitigation. Mason Takacs Systems Engineer

What the GDPR is and how to deal with it. Russell McDermott Sales Engineer +44 (0) x 2208

Monitoring Active Directory: Both Azure AD and On-Premise AD and How Synchronization and Federation Play In

Don't 'WannaCry' No More: How to Shield Your IT Infrastructure from Ransomware. Netwrix Corporation Roy Lopez System Engineer

Netwrix Auditor. Know Your Data. Protect What Matters. Roy Lopez Solutions Engineer

Outsmarting Ransomware: Hints and Tricks. Netwrix Corporation Adam Stetson System Engineer

What s New in Netwrix Auditor 9.5

How to Ensure Continuous Compliance?

The 3 Pillars of SharePoint Security

Tracking changes in Hybrid Identity environments with both Active Directory and Azure Active Directory

Install and Configure Active Directory Domain Services

Hacker Explains Privilege Escalation: How Hackers Get Elevated Permissions

4 Ways Your Organization Can Be Hacked

Top 5 NetApp Filer Incidents You Need Visibility Into

Netwrix Auditor. Administration Guide. Version: /31/2017

Keeping Tabs on the Top 3 Critical SharePoint Changes with Netwrix Auditor

Netwrix Auditor. Event Log Export Add-on Quick-Start Guide. Version: 8.0 6/3/2016

Expert Webinar: Hacking Your Windows IT Environment

What s New in Netwrix Auditor 9.7

Top 5 Oracle Database Incidents You Need Visibility Into

HIPAA Controls. Powered by Auditor Mapping.

Netwrix Auditor Competitive Checklist

Netwrix Auditor for Active Directory

ISO/IEC Controls

SOX/COBIT Framework. and Netwrix Auditor Mapping. Toll-free:

LepideAuditor. Configure Mailbox Access Auditing

Manage and Maintain Active Directory Domain Services

GDPR Controls and Netwrix Auditor Mapping

HIPAA Requirements. and Netwrix Auditor Mapping. Toll-free:

Netwrix Virtual. Customer Summit 2016

Netwrix Auditor. Installation and Configuration Guide. Version: /1/2017

Netwrix Auditor for SQL Server

IT Security Horrors That Keep You Up at Night

Netwrix Auditor. Release Notes. Version: 9.6 6/15/2018

Netwrix Auditor. Release Notes. Version: /31/2017

Summoning the Password Cracking Beast

Netwrix Auditor. Intelligence Guide. Version: /30/2018

NetWrix SharePoint Change Reporter

PCI DSS Requirements. and Netwrix Auditor Mapping. Toll-free:

Netwrix Auditor. Virtual Appliance and Cloud Deployment Guide. Version: /25/2017

Dell Change Auditor 6.5. Event Reference Guide

Netwrix Auditor Add-on for Solarwinds Log & Event Manager

IT Security Training MS-500: Microsoft 365 Security Administration. Upcoming Dates. Course Description. Course Outline $2,

Netwrix Auditor. Release Notes. Version: 9.5 4/13/2018

HCX SERVER PRODUCT BRIEF & TECHNICAL FEATURES SUMMARY

LepideAuditor. Compliance Reports

Configuring and Administering Microsoft SharePoint 2010

GSX 365 Usage Reports & Security Audit

Configuring and Administering Microsoft SharePoint 2010

DOCAVE ONLINE. Your Cloud. Our SaaS. A Powerful Combination. Online Services. Technical Overview ADMINISTRATION BACKUP & RESTORE

Managing Microsoft 365 Identity and Access

Microsoft Configuring and Administering Microsoft SharePoint 2010

Course 10174B: OVERVIEW COURSE DETAILS. Configuring and Administering Microsoft SharePoint 2010

Poor PAM processes and policies leave the crown jewels susceptible to security breaches Global Survey of IT Security Professionals

Quest Enterprise Reporter 2.0 Report Manager USER GUIDE

HPE Security ArcSight Connectors

Netwrix Auditor Add-on for Privileged User Monitoring

Netwrix Auditor. Integration API Guide. Version: /4/2017

VARONIS PARTNER PROGRAM

GSX 365 Usage Usage & Compliance Reporting Collect, Analyze & Anticipate

Netwrix Auditor. Integration API Guide. Version: 9.7 2/8/2019

Netwrix Auditor Add-on for Nutanix Files

Centrify Suite Enterprise Edition Self-Paced Training

NIST SP Controls

Virtualizing Oracle on VMware

FISMA Compliance. with O365 Manager Plus.

NETWRIX CHANGE REPORTER SUITE

NetWrix VMware Change Reporter Version 3.0 Enterprise Edition Administrator s Guide

Netwrix Auditor. Integration API Guide. Version: /4/2016

Configuring and Administering Microsoft SharePoint 2010

NetWrix Group Policy Change Reporter

Skybox Product Tour. Installation and Starting Your Product Tour Tour Login Credentials: User Name: skyboxview Password: skyboxview

Security Explorer 9.1. User Guide

GLBA Compliance. with O365 Manager Plus.

Active Directory Auditing Guide

Succeed in ISO/IEC Audit Checks. Bob Cordisco Systems Engineer

Microsoft. Managing Office 365 Identities and Requirements Version: Demo. [ Total Questions: 10] Web:

PowerBroker Auditing & Security Suite Version 5.6

7 Steps to Complete Privileged Account Management. September 5, 2017 Fabricio Simao Country Manager

Netwrix Auditor for Oracle Database

LepideAuditor SIEM Integration

Microsoft Exchange Server 2016

Netwrix Auditor for Active Directory

Running Effective Projects In Office 365. June 1, 2017

Who am I? Identity Product Group, CXP Team. Premier Field Engineer. SANS STI Student GWAPT, GCIA, GCIH, GCWN, GMOB

CipherCloud CASB+ Connector for ServiceNow

TRUSTED IT: REDEFINE SOCIAL, MOBILE & CLOUD INFRASTRUCTURE. John McDonald

Microsoft TS: Windows Small Business Server 2011 Standard, Configuring. Practice Test. Version:

DocAve 6 Software Platform Service Pack 1

Designing and Deploying Microsoft Exchange Server 2016

Course 10972B: Administering the Web Server (IIS) Role of Windows Server

Transcription:

Back to Basics IT Infrastructure Configuration Tips & Tricks Active Directory / Group Policy / Exchange Presenter: Danny Murphy Sr. Sales Engineer, Netwrix Corporation Danny.Murphy@netwrix.com +44 (0) 203 588 3023 ext 2202

Agenda Briefly about Netwrix Netwrix Auditor Introduction Netwrix Auditor Conceptual Model Netwrix Auditor Configuration Questions and Answers

About Netwrix Corporation Year of foundation: 2006 Headquarters location: Irvine, California Global customer base: 6000 Customer support: global 24/5 support with 97% customer satisfaction Recognition: Among the fastest growing software companies in the US with more than 70 industry awards from Redmond Magazine, SC Magazine, WindowsIT Pro and others

Netwrix Customers Financial Healthcare & Pharmaceutical Federal, State, Local, Government GA Industrial/Technology/Other

Award winning products All awards: www.netwrix.com/awards

About Netwrix Auditor Netwrix Auditor A visibility and governance platform that enables control over changes, configurations, and access in hybrid cloud IT environments by providing security analytics to detect anomalies in user behavior and investigate threat pattern before a data breach occurs.

Netwrix Auditor Applications Active Directory Exchange Office 365 Windows File Servers EMC NetApp Windows Server VMware SQL Server SharePoint

Netwrix Auditor Applications Scope Active Directory Active Directory changes; Group Policy changes; State-in-Time information on configurations; real-time alerts; logon auditing; AD change rollback; inactive user tracking and password expiration alerting NetApp Changes to files, folders, shares and permissions; successful and failed access attempts; data usage and data ownership Exchange Changes to Exchange server configuration, Exchange databases, mailboxes, mailbox delegation, permissions; non-owner mailbox access auditing Windows Server Changes to configuration of Windows-based servers; Event Logs, Syslog, Cisco, IIS, DNS; User activity video recording Office 365 Exchange Online administrative changes; changes to mailboxes, mail users, groups, permissions, policies, and management roles; non-owner mailbox access auditing VMware Changes made to vcenter and its servers, folders, clusters, resource pools and hardware configurations of virtual machines Windows File Servers Changes to files, folders, shares and permissions; successful and failed access attempts; file analysis reporting; state-intime information on configurations SQL Server Changes to SQL Server objects and permissions, server instances, roles, databases, tables, stored procedures, etc. EMC Changes to files, folders, shares and permissions; successful and failed data access attempts; data usage and data ownership SharePoint Changes to farm configuration, user content and security; permissions; group membership and security policies; read access auditing

Netwrix Auditor Conceptual Model Схема будет в понедельник!

Configure Domain for Auditing In the audited environment: Active Directory / Group Policy The ADSI Edit utility must be installed on any domain controller in the audited domain. The following policies must be set to "Success" for the effective domain controllers policy: Audit account management Audit directory service access The Audit logon events policy must be set to "Success" (or "Success" and " Failure") for the effective domain controllers policy. The Advanced audit policy settings can be configured instead of basic. The Maximum Security event log size must be set to 4GB. The retention method of the Security event log must be set to Overwrite events as needed. (Optional) The Object-level audit settings must be configured for the Domain, Configuration and Schema partitions.

Configure Domain for Auditing In the audited environment: Exchange Follow the same steps described for Active Directory + The Administrator Audit Logging settings must be configured (only required for Exchange 2010 and 2013). In order to audit mailbox access, the Logons logging level must be set to "Minimum«via the Exchange Management Shell. NOTE: This is only required if you disable Netwrix Auditor Mailbox Access Core Service when auditing mailbox access on Exchange 2007 and 2010. In order to audit mailbox access, native audit logging must be enabled for user, shared, equipment, linked, and room mailboxes. - Access types: administrator, delegate user - Actions: Update, Move, MoveToDeletedItems, SoftDelete, HardDelete, FolderBind, SendAs, SendOnBehalf, Create

Netwrix Auditor Demonstration

Next Steps Guide: Netwrix Auditor Installation and Configuration Guide netwrix.com/download/documents/netwrix_auditor_installation_configuration_guide.pdf Free Trial: setup in your own test environment netwrix.com/freetrial Test Drive: virtual POC, try in a Netwrix-hosted test lab netwrix.com/testdrive Live One-to-One Demo: product tour with Netwrix expert netwrix.com/livedemo Contact Sales to obtain more information netwrix.com/contactsales Webinars: join our upcoming webinars or watch the recorded sessions netwrix.com/webinars netwrix.com/webinars#featured

Thank You!

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback