Skip Links

Network World

  • Social Web 
  • Email 
  • Close

(Comma separation for multiple addresses)
Your Message:

NetIQ adds monitoring, auditing to directory tools

By John Fontana , Network World , 11/14/2005
  • Share/Email
  • Tweet This
  • Comment
  • Print

NetIQ last week released software that tracks changes in Active Directory. The tool is intended to provide corporate users with another weapon for handling compliance regulations.

WithChange Guardian for Active Directory, users can audit and monitor directory changes in real time. Unauthorized or misconfigured changes can lead to users getting inappropriate access or to the opening up of security vulnerabilities. The tool plugs into NetIQ's Security Manager software or is available as a management pack for Microsoft Operations Manager.

"I am getting the ability to use a microscope and look at exactly what I want to look at," says David Valcik, vice president of information technologies at Beverly Enterprises in Fort Smith, Ark., which provides healthcare services to the elderly. Today the company uses NetIQ's Security Manager to audit the directory, which supports 45,000 users and 52,000 objects, but the software forces Valcik's staff to manually sift through log files.

"Anytime we can provide a tool to reduce the cost of auditing, and we can put some controls in place to leverage the tool - that is a win-win situation. If our auditors [internal and external] get comfortable that these tools are solid, it just helps us meet our requirements for Sarbanes-Oxley," Valcik says.

Change Guardian breaks down directory changes into three categories: managed, unmanaged and high-profile. Users can adapt this model to the current tools and procedures they use to manage Active Directory.

The managed-change category includes every change - such as the addition and deletion of users - that is made through the authorized interfaces defined by a company's policies, such as having NetIQ Directory and Resource Administrator as its Active Directory management tool.

Anything not going through an authorized interface - for example, an administrator using native Active Directory tools to add or delete users - is categorized as unmanaged change. This allows users to identify and investigate when changes are made outside normal operational procedures.

The high-profile category encompasses such changes to the directory as moving a global catalog.

Change Guardian comes preconfigured with a generic set of alerting and reporting rules and a tool that lets users create their own rules.

NetIQ's Change Guardian competes with similar products from NetPro and Quest.

The software starts at $1,200 per Windows domain-controller server.

Change control
NetIQ last week added a monitoring and auditing tool for Active Directory to its lineup of operational-change control software. NetIQ Change Guardian integrates with NetIQ Security Manager and Microsoft Operations Manager, so users can plug the software into familiar interfaces.

Software product Description
NetIQ Change Guardian Tool for monitoring and auditing changes made to Active Directory.
NetIQ Security Manager Policy-based incident-management security software.
Microsoft Operations Manager Performance and monitoring hub that can be extended with modules called management packs.
Click to see:
  • Share/Email
  • Tweet This
  • Comment
  • Print

Partner Content

Blue Stripe Software

www.bluestripe.com/

Improving Application Performance Troubleshooting

Diagnosing why an application is slow is hard, at times taking days or weeks to isolate and resolve. This paper explains the challenges involved using current management tools, provides a 'wish list' for application management and analysis, and explains the need for an application system-wide approach that monitors entire applications, not components.

Download Whitepaper

Virtual Vigilance: Managing Application Performance in Virtual Environments

This paper highlights the impact of virtualization on application performance.  "Managing Application Performance in Virtual Environments" states: "Best-in-Class organizations are predominately taking actions around improving visibility across both physical and virtual systems, assessing the business impact of application performance and understanding interdependencies of applications in virtualized environments."

Download Whitepaper

Application Service Requests: The Missing Link for Pragmatic ITSM

Forrester Research analyst Glenn O'Donnell and BlueStripe co-founder Vic Nyman discuss a breakthrough approach to application problem management. Learn the new approach for ITSM problem management, which provides: Rapid isolation of application slow-downs to specific components for quick problem resolution, 24/7 monitoring for proactive notification of potential issues before end users are impacted and much more.

Register for Webcast

Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed