Unauthorized changes to Active Directory (AD) from Group Policy Objects and schema to user or group attributes risk crippling security breaches and domain down time.

Specifically Engagent Director (Director) answers the following questions:
    1. What the change was including new and previous values.
    2. When the change was made.
    3. Where the change was made.
    4. Who made the change.

Changes to groups impact rights to applications, software distribution and file and print servers for large groups of users, reducing user productivity.  By logging when a user last logged on or changes to the user's access rights or modifications to SID you can gain a significant edge on potential security vulnerabilities.

By tracking user and group changes you can also specifically see when a user or group gains or loses access rights to key business systems, such as financial systems.  Knowing 'who has access to what' is the cornerstone of the government regulations that drive security reporting requirements today;  Only with Director will you know exactly who has access to what business systems, and only with Director can you easily produce the associated reports.

At a glance:

• Captures key changes including configuration, group and user attribute changes
• Details of each change, including: Who, What, Where, When
• Delivers the change's previous value and new value
• Many reporting options
• Contains built-in alerts and email notification

Specifically Director can:

Track all AD Changes-
Directory configuration changes, group changes, user attribute changes, all other AD objects

Configuration Changes -

GPO, schema, forest, site domain, domain controller, DNS and all other Directory integrated services, Organizational Units (OU) changes (security and object containment.

User Attribute Changes-

1. User created/added/deleted/removed
2. User moved (within organizational units)
3. User renamed, permissions changed, security changed, password changed, account locked/disabled/enabled expiration date changed

Group Changes-

1. Group created/added/deleted/removed
2. Group members added/removed
3. Group renamed, permissions changed, security changed

Computer Changes:

Computer created/added/removed from/to domain