Features and BenefitsInTrust Plug-in for File Access- The InTrust Plug-in for File Access – provides real-time, detailed auditing of all user activity as it relates to files and folders including changes to permissions of these files and folders. The Plug-in for File Access provides efficient collection and storage of audit data and enables organizations to effectively react to unapproved permission changes and inappropriate attempts to access business critical information.
- Audit File/Folder Permission Changes – The InTrust Plug-in for File Access provides detailed, real-time auditing of file/folder permission changes. The Plug-in works within the framework of InTrust product to provide all information behind important permission changes. This includes who made the change, where they made the change from and the before and after values. This provides operational value by allowing an administrator to capture permission changes and reverse those changes if necessary. It also has security and compliance value by allowing organizations to track permission changes made on a Windows file server.
- Audit User Activity –The Plug-in collects and correlates all unusual user and suspicious administrator activity in regards to access. Detailed information on activities such as moves, deletes, reads and writes is tracked and reported/alerted against. For example, reporting on failed access attempts made to an HR file/folder.
- Extended Detailed Auditing – The Plug-in for File Access removes the need for native auditing. This saves critical system resources and cuts down on the number of events being generated every time a file or folder is accessed. Keywords can be applied to filters which control what is being auditing as well as a wizard enabling an organization to granularly select only critical files and folders for auditing.
- Real-Time Response – The InTrust Plug-in for File Access provides real-time response to the most critical events and changes to a file system. Administrators can be notified immediately by e-mail when possible violations and changes occur. In addition to providing these notifications, you can configure InTrust to take immediate, automatic action in response to certain events, such as disabling the offending user.
Listen as security expert Randy Franklin Smith explores the gaps in Windows file access auditing and how to fill them Watch the WebcastRead on to learn more about how this organization has employed the InTrust Plug-in for File Access Read the Case Study
|