Knowing your environment is critical, but knowing what has changed in that environment is even more important. More and more, Microsoft and third party applications are requiring the extension of your AD Schema with new attributes. Only a small group of individuals have the power to make changes like this, so have StealthAUDIT alert you when any additions or deletion are made to the most powerful groups within your environment like Schema Administrators or Enterprise Administrators or to the schema and objects themselves!

Changes to any of your NTDS settings can throw off all of your systems and service reliability can be reduced dramatically. Now, you can easily track modifications to all of your important AD information and head off problems and security risks before they occur.

Our AD solution Set can let you keep tabs on who is making what changes to Universal, Global, and Domain Local groups regardless of how often your security logs roll over or how many objects you manage within your AD infrastructure.

Additionally, in order to know what advanced security changes that you can report on, use StealthAUDIT to identify which AD objects are set up to be audited, logged, and for what specific settings. If it’s not being recorded to your event logs, then you will have a hard time reporting on the sensitive changes.

 

    

View the complete Active Directory Change Solution Report Set here.

 

The Active Directory Change Reports scans your active directory for changes looking for changes in :

• Default Domain Policy
• Enterprise Administrative Group
• FSMO Role Holders
• Schema
• Time Synchronization

• Who Made the Change, a job designed to look for Event ID's within the search scope that correspond to the following events:
  • User Account Creation & Deletion
  • Password Resets
  • Security Group Creation & Deletion
  • Security Group Membership Additions & Deletions