Microsoft Windows IT Security Auditing Software

10:32

Explore Change Auditor’s new features, such as Golden Ticket detection & auditing Kerberos and NTLM

Change reporting and access logging for Active Directory (AD) and enterprise applications is cumbersome, time-consuming and, in some cases, impossible using native IT auditing tools. This often results in data breaches and insider threats that can go undetected without protections in place.

Fortunately, there's Change Auditor. With Change Auditor, you get complete, real-time IT auditing, in-depth forensics and comprehensive security monitoring on all key configuration, user and administrator changes for Microsoft Active Directory, Azure AD, Exchange, Office 365, file servers and more. Change Auditor also tracks detailed user activity for logons, authentications and other key services across enterprises to enhance threat detection and security monitoring. A central console eliminates the need and complexity for multiple IT audit solutions.

Hybrid environment auditing

Get a single, correlated view across your hybrid Microsoft environments, with visibility of all changes whether on-prem or in the cloud.

At-a-glance display

Track user and administrator activity with detailed information for change events, plus original and current values for all changes.

Hosted dashboard

View hybrid AD and Office 365 activity together in On Demand Audit, a SaaS dashboard with flexible search and data visualization.

Golden Ticket detection

Detect and alert on common Kerberos authentication vulnerabilities used during Golden Ticket / Pass-the-ticket attacks.

Object protection

Protect against changes to critical data within AD, Exchange and Windows file servers, including privileged groups, GPOs and sensitive mailboxes.

Real-time alerts on the move

Send critical change and pattern alerts to email and mobile devices to prompt immediate action, even while you're not on site.

SIEM integration

Integrate with SIEM solutions to forward Change Auditor events to Splunk, ArcSight or QRadar.

Auditor-ready reporting

Generate comprehensive reports to support regulatory compliance mandates for GDPR, SOX, PCI-DSS, HIPAA, FISMA, GLBA and more.

On Demand Audit Hybrid Suite for Office 365

With just a few clicks, you can pair Change Auditor for Active Directory and Change Auditor for Logon Activity with On Demand Audit to get a single, hosted view of all changes made across AD, Azure AD, Exchange Online, SharePoint Online, OneDrive for Business and Teams. Simplify investigations with responsive search and interactive data visualization, and retain audit history for up to 10 years.

Learn How to Upgrade

Features

Account lockout

Capture the originating IP address/workstation name for account lockout events to simplify troubleshooting.

Improved security insights

Correlate disparate IT data from numerous systems and devices into IT Security Search, an interactive search engine for fast security incident response and forensic analysis. Include user entitlements and activity, event trends, suspicious patterns and more with rich visualizations and event timelines.

Quest InTrust integration

Integrate with Quest InTrust for 20:1 compressed event storage and centralized native or third-party log collection, parsing and analysis with alerting and automated response actions to suspicious events such as known ransomware attacks or fishy PowerShell commands.

Superior auditing engine

Remove auditing limitations and capture change information without the need for native audit logs, resulting in faster results and significant savings of storage resources.

Security timelines

View, highlight and filter change events and discover their relation to other security events in chronological order across your Microsoft environment for better forensic analysis and security incident response.

Platforms

04:07

Learn about Change Auditor for Active Directory

Active Directory

Change Auditor for Active Directory and Change Auditor for Logon Activity detect and alert on vital events in Microsoft Active Directory and Azure AD with a single, correlated view across your hybrid AD environment. Track both Kerberos and NTLM authentications to help proactively identify vulnerabilities.

Featured Products

Change Auditor for Active Directory

Ensure security, compliance and control of AD and Azure AD.

Download Free Trial Buy Online

Change Auditor for Logon Activity

Alert and report on AD logon and logoffs and Azure AD sign-in activity

Download Free Trial

07:06

Product Demo: Learn about On Demand Audit

Azure AD and Office 365

With just a few clicks, you can pair Change Auditor for Active Directory and On Demand Audit to get a single, hosted view of all changes made across AD, Azure AD, Exchange Online, SharePoint Online and OneDrive for Business.

Featured Products

On Demand Audit

Search and investigate changes made on prem or in the cloud from a single, hosted dashboard.

Try Online

04:02

Learn about Change Auditor for Exchange

Exchange

Change Auditor for Exchange simplifies the Exchange auditing process. Track, audit, report and alert on Microsoft Exchange on-premises and Exchange Online changes in real time within a single, correlated view.

Featured Products

Change Auditor for Exchange

Document all critical group, mailbox and public/private changes to Exchange

Download Free Trial

Overview of Change Auditor for Windows File Servers

03:52

Product Demo: Change Auditor for Windows File Servers

Windows Server

Change Auditor for Windows File Servers helps you control and audit changes to Microsoft Windows Server efficiently and cost-effectively. Proactively track, audit, report on and alerts on vital changes, including user and administrator accounts, in real time and without the overhead of native auditing.

Featured Products

Change Auditor for Windows File Servers

Track, audit and receive reports on all Windows File Server real-time system changes

Download Free Trial

Overview of Change Auditor for SQL Server

04:06

Product Demo: Change Auditor for SQL Server

SQL Server

Change Auditor for SQL Server makes database auditing of Microsoft SQL Server easy and secure. It tracks, audits, reports on and alerts on changes in real time, translating events into simple terms and eliminating the time and complexity required for auditing.

Featured Products

Change Auditor for SQL Server

Efficiently track, audit, report and alert on changes to Microsoft SQL Server in real time

Download Free Trial

How to audit file activity in Change Auditor for NetApp

05:04

Product Demo: Change Auditor for NetApp

Network-attached storage

Ensure the security, compliance and control of files, folders and shares by tracking, auditing, reporting and alerting on all changes in real time. With Change Auditor for NetApp, EMC or FluidFS, you can report on and analyze events and changes without the complexity and time required with native auditing.

Featured Products

Change Auditor for NetApp

Audit all events related to file activity and permissions on your NetApp NAS devices.

Download Free Trial

Change Auditor for EMC

Audit all events related to file activity and permissions on your EMC NAS devices.

Download Free Trial

Overview of Change Auditor for SharePoint

03:26

SharePoint and OneDrive for Business

Change Auditor for SharePoint enables faster, easier and more secure SharePoint, SharePoint Online and OneDrive for Business auditing. It translates events into simple terms, stores data in one centralized and secure database and, in real time, tracks, audits, reports on and alerts on critical changes to:

SharePoint farms, servers, sites, users, permissions and more
File and folder activity as well as sensitive data moving in and out of OneDrive for Business

Featured Products

Change Auditor for SharePoint

Enable faster, easier and more secure Microsoft SharePoint auditing

Download Free Trial

04:18

Skype for Business

Change Auditor for Skype for Business provides enterprise-wide visibility that allows you to see how Skype for Business is configured and enforced, so you can take a proactive management approach. Get alerts and reports on administrator activity, security and configuration changes in real time.

Featured Products

Change Auditor for Skype for Business

Strengthen policy enforcement with proactive Lync management

Download Free Trial

VMware

Change Auditor for VMware vCenter helps you ensure the security, compliance and control of event activity, and the security of VMware vCenter Server. It manages, audits, reports on and provides alerts on all changes to the platform in real time, making VMware monitoring easy.

Featured Products

Change Auditor for VMware vCenter

Ensure the security, compliance and control of event activity of VMware vCenter Servers

Download Free Trial

Change Auditor object protection is a lifesaver. I have it set up to prevent changes to the ACLs on certain directories on our file servers, as well as to protect all administrative accounts. We’ve had pen testers come in and be very surprised that they could not get past the Change Auditor object protection

Enterprise Administrator, Large Retail Chain

Read Case Study

With Change Auditor, we achieved our goal of gaining complete and centralized visibility of security audit operations across the entire Group — including not just our on-premises Windows file servers and domain controllers but also our Office 365 services, such as mail, SharePoint Online and OneDrive for Business

Mirco Destro, CIO and IT Manager, AFV Beltrame Group

Read Case Study

Previously, investigating an issue could easily take an hour. Change Auditor cuts that time to just 5–10 minutes.

Dennis Persson, IT Systems Technician, Region Halland

Read Case Study

Stevie Awards 2018 People’s Choice winner

In the 2018 Stevie Award’s People Choice awards, Change Auditor was voted best software and also won a Silver Stevie for best new product of 2018

Resources

Change Auditor Family

Datasheet

Change Auditor Family

Ensure security, compliance and control of AD and Azure AD.

Read Datasheet

Top 10 Active Directory Security Reports and Alerts You Need

White Paper

Top 10 Active Directory Security Reports and Alerts You Need

Check out this white paper to discover the top 10 reports and alerts you need to ensure the stability and security of your on-prem or hybrid Active Directory, and see how easily you can get them with Change Auditor.

Read White Paper

Five Ways to Improve Auditing of Your Hybrid Active Directory

White Paper

Five Ways to Improve Auditing of Your Hybrid Active Directory

Discover just five of the ways On Demand Audit Hybrid Suite for Office 365 helps you secure your hybrid AD environment.

Read White Paper

How to integrate Change Auditor with On Demand Audit

04:58

Video

How to integrate Change Auditor with On Demand Audit

Learn how to integrate Change Auditor with On Demand Audit from Quest.

Watch Video

What is Quest Change Auditor and how does it compare to and complement Microsoft ATP and third-party SIEM solutions?

14:10

Video

What is Quest Change Auditor and how does it compare to and complement Microsoft ATP and third-party SIEM solutions?

Hear Quest product experts, Ghazwan Khairi, Bryan Patton and Robert Tovar discuss the real-time security and IT auditing of Change Auditor and how it compares to and integrates with SIEM solutions and Microsoft Advanced Threat Protection.

Watch Video

Overcoming Office 365 Security & Compliance Auditing Challenges

White Paper

Overcoming Office 365 Security & Compliance Auditing Challenges

Commercial use of Office 365 has skyrocketed in recent years — but most organizations admit they still lack the mature audit capabilities they need to ensure security and regulatory compliance in the Microsoft cloud. It’s easy to see why. Getting a solid understanding of what's going on

Read White Paper

Retailer Ensures PCI DSS Compliance

Case Study

Retailer Ensures PCI DSS Compliance

Any retailer that wants to continue accepting credit cards needs to maintain compliance with PCI DSS standards — and prove it during annual audits. One of the PCI DSS requirements can be particularly tough to meet: storing a whole year’s worth of audit data. Discover how one large retail

Read Case Study

Manufacturer ensures security and GDPR compliance

Case Study

Manufacturer ensures security and GDPR compliance

To continue to thrive in its competitive market, Beltrame Group had modernized its IT environment, with help from Quest migration tools. But the IT team lacked the deep visibility required to properly manage and secure their new hybrid ecosystem. Now, with Change Auditor solutions for Active Directo

Read Case Study

Blogs

Workforce and IT Refresher Tips to Avoid COVID-19 Phishing Attempts

View Blogs

Get started now

Contact Sales View all Trial Downloads

Change Auditor

Real-time security and IT auditing for your Microsoft Windows environment

Hybrid environment auditing

At-a-glance display

Hosted dashboard

Golden Ticket detection

Object protection

Real-time alerts on the move

SIEM integration

Auditor-ready reporting

On Demand Audit Hybrid Suite for Office 365

Features

Account lockout

Related searches

Improved security insights

Quest InTrust integration

Superior auditing engine

Security timelines

Platforms

Active Directory

Azure AD and Office 365

Exchange

Windows Server

SQL Server

Network-attached storage

SharePoint and OneDrive for Business

Skype for Business

VMware

Stevie Awards 2018 People’s Choice winner

Resources

Change Auditor Family

Datasheet

Change Auditor Family

Ensure security, compliance and control of AD and Azure AD.

Top 10 Active Directory Security Reports and Alerts You Need

White Paper

Top 10 Active Directory Security Reports and Alerts You Need

Check out this white paper to discover the top 10 reports and alerts you need to ensure the stability and security of your on-prem or hybrid Active Directory, and see how easily you can get them with Change Auditor.

Five Ways to Improve Auditing of Your Hybrid Active Directory

White Paper

Five Ways to Improve Auditing of Your Hybrid Active Directory

Discover just five of the ways On Demand Audit Hybrid Suite for Office 365 helps you secure your hybrid AD environment.

How to integrate Change Auditor with On Demand Audit

Video

How to integrate Change Auditor with On Demand Audit

Learn how to integrate Change Auditor with On Demand Audit from Quest.

What is Quest Change Auditor and how does it compare to and complement Microsoft ATP and third-party SIEM solutions?

Video

What is Quest Change Auditor and how does it compare to and complement Microsoft ATP and third-party SIEM solutions?

Hear Quest product experts, Ghazwan Khairi, Bryan Patton and Robert Tovar discuss the real-time security and IT auditing of Change Auditor and how it compares to and integrates with SIEM solutions and Microsoft Advanced Threat Protection.

Overcoming Office 365 Security & Compliance Auditing Challenges

White Paper

Overcoming Office 365 Security & Compliance Auditing Challenges

Commercial use of Office 365 has skyrocketed in recent years — but most organizations admit they still lack the mature audit capabilities they need to ensure security and regulatory compliance in the Microsoft cloud. It’s easy to see why. Getting a solid understanding of what's going on

Retailer Ensures PCI DSS Compliance

Case Study

Retailer Ensures PCI DSS Compliance

Any retailer that wants to continue accepting credit cards needs to maintain compliance with PCI DSS standards — and prove it during annual audits. One of the PCI DSS requirements can be particularly tough to meet: storing a whole year’s worth of audit data. Discover how one large retail

Manufacturer ensures security and GDPR compliance

Case Study

Manufacturer ensures security and GDPR compliance

Blogs

Workforce and IT Refresher Tips to Avoid COVID-19 Phishing Attempts

The Many Colors of AD Security – Microsoft Red Forest, Orange Forest, Greenfield or Blue?

Top 10 Security Events to Monitor in Azure AD and Office 365

Get started now