Enterprise Reporter
Bring complete visibility into permissions, groups and assets
Simplified Microsoft platform security compliance and reporting
Keep your Microsoft infrastructure healthy and secure with insights into what changes have been made so you can stay ahead of potential security vulnerabilities.
Enterprise Reporter provides visibility into users, groups, permissions and other configurations to reduce the strain on administrative resources and enable in-depth reporting. Use the tool’s real-time access assessments and built-in reporting library to make audit concerns a thing of the past.
And now you can target specific areas of your Microsoft platform organization with other versions of Enterprise Reporter, including for:
Features
Correlate disparate IT data from numerous systems and devices into an interactive search engine for fast security incident response and forensic analysis. Include user entitlements and activity, event trends, suspicious patterns and more with rich visualizations and event timelines.
Compliance and security visibility
Gain visibility into the configuration of all critical IT assets in Active Directory domains, Exchange servers, SQL servers, Windows file servers and NAS devices. This comprehensive Windows server reporting improves compliance with security best practices, internal policies and external regulations.
Active Directory pre- and post- migration analyses
Ensure a smooth domain migration or consolidation project by pinpointing user and group dependencies, matching conflicts and identifying unused accounts before the migration starts.
Real-time access assessment
Know who has access to what resources across the enterprise network. Tighten security and ensure successful IT audits by ensuring that access is provided on a need-to-know basis.
Change review
Implement a change review process by capturing the historical configuration of Active Directory Exchange, Windows files servers and SQL Servers and viewing detailed change history reports. Ensure appropriate Active Directory delegation by reporting on who has access to Active Directory domains, OUs, users, groups and computers residing in them.
Scalable data collection
Scale to Active Directory environments of any size and geographic distribution. Schedule collections during off-peak hours to minimize the impact of data collection on network and server performance, and leverage a distributed collection architecture for load balancing.
Efficient storage
Reduce database storage requirements and save more change history data by comparing discoveries and storing only the changes.
Automated reporting workflows
Automate report generation and delivery for multiple report consumers according to different schedules.
Separation of duties (SoD)
Honor departmental and business function boundaries by letting auditors, help desk and IT managers get exactly the reports they asked for, including Active Directory reports.
Customizable reports
Use predefined and customizable reports with advanced filtering in multiple formats including PDF, HTML, MHT, RTF, XLS, XLSX, CSV, text and images, enabling effective data analysis for the unique informational needs of your organization.
Common reporting portal
Export reports to our Knowledge Portal for a unified reporting interface across the entire family of compliance and IT governance solutions.
Specifications
- Memory
- Minimum: 16 GB RAM
- Recommended: 16 GB RAM
- Processor
- Intel® or AMD 2 GHz multiprocessor
- 64-bit processor (recommended) or 32-bit processor
- Hard disk space
Disk space requirements will vary with the Enterprise Reporter components you install:
- Server—10 GB
- Configuration Manager—2 GB
- Discovery Node—10 GB for installed files, plus extra space for processing discoveries. Space required varies with the amount of data collected.
- Report Manager—10 GB
- Database size varies with the amount of data you collect
- The file share that you use for the Shared Data Location will require space for storage of collected data. Space required varies with the amount of data collected.
- Total disk size if all components and databases are on the same system—100 GB
- Memory
- Minimum: 2 GB RAM
- Recommended: 4 GB RAM
- Processor
- 500 MHz+ Processor
- Hard disk space
Disk space requirements will vary with the Enterprise Reporter components you install:
- 100 MB free disk space for every 1,000,000 files/folders scanned
The following operating systems are supported for Enterprise Reporter components and Access Explorer.
NOTE: It is not recommended that the server or console be installed on a domain controller.
NOTE: New Dynamic Access Control (DAC) features are not supported for Access Explorer Managed Computers (Targets).
- Computers
- Windows Server® 2012 R2
- Windows Server® 2012
- Windows Server® Core 2012 R2
- Windows Server® Core 2012 R2 Cluster
- Windows Server® Core 2012
- Windows Server® Core 2012 Cluster
- Windows Server® 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1 (64 bit) Cluster
- Windows Server® 2008 with Service Pack 2 (64 bit and 32 bit)
- Computers
- Windows Server® 2012 R2
- Windows Server® 2012
- Windows Server® 2008 R2 with Service Pack 1
- Windows Server® 2008 with Service Pack 2 (64 bit and 32 bit)
- Windows® 8.1
- Windows® 8 (64 bit and 32 bit)
- Windows® 7 with Service Pack 1 (64 bit and 32 bit)
- Windows Vista® with Service Pack 2 (64 bit and 32 bit)
- Computers
- Windows Server® 2012 R2
- Windows Server® 2012
- Windows Server® Core 2012 R2
- Windows Server® Core 2012 R2 Cluster
- Windows Server® Core 2012
- Windows Server® Core 2012 Cluster
- Windows Server® 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1 (64 bit) Cluster
- Windows Server® 2008 with Service Pack 2 (64 bit and 32 bit)
- Computers
- Windows Server® 2012 R2
- Windows Server® 2012
- Windows Server® 2012 R2 Cluster
- Windows Server® 2012 Cluster
- Windows Server® Core 2012 R2
- Windows Server® Core 2012 R2 Cluster
- Windows Server® Core 2012
- Windows Server® Core 2012 Cluster
- Windows Server® 2008 R2 with Service Pack 1
- Windows Server® 2008 R2 with Service Pack 1 Cluster
- Windows Server® Core 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1 (64 bit) Cluster
- Windows Server® 2008 with Service Pack 2 (64 bit and 32 bit)
- Windows Server® 2008 with Service Pack 2 (64 bit and 32 bit) Cluster
- Windows Server® 2003 with Service Pack 2 (64 bit and 32 bit)
- Windows Server® 2003 R2 with Service Pack 2 (64 bit)
- Network Attached Storage (NAS) Devices
- NetApp® Filer - Data ONTAP® 8.3 C-Mode
- NetApp® Filer - Data ONTAP® 8.2 C-Mode
- NetApp® Filer - Data ONTAP® 8.1 C-Mode
- NetApp® Filer - Data ONTAP® 8.1 7-Mode
- NetApp® Filer - Data ONTAP® 8.0.1
- NetApp® Filer - Data ONTAP® 8.X and above
- NetApp® Filer - Data ONTAP® 7.3.4
- EMC® Celerra® 7.0.52.1
- EMC® Celerra® 6.0.36.4
- EMC® Celerra® 5.6 with Server Message Block 1.0
- EMC® VNX 7.1.47.5
- EMC® VNX 7.0.35.3
- Isilon® OneFS® 7.1.0.0
- Dell FluidFS 5.0.002821
- Dell FluidFS 4.0
- Computers
- Windows Server® 2012 R2
- Windows Server® 2012
- Windows Server® Core 2012 R2
- Windows Server® Core 2012 R2 Cluster
- Windows Server® Core 2012
- Windows Server® Core 2012 Cluster
- Windows Server® 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1 (64 bit) Cluster
- Windows Server® 2008 with Service Pack 2 (64 bit and 32 bit)
- Domain Functional Levels
- Windows Server® 2012 R2 Functional Level
- Windows Server® 2012 Functional Level
- Windows Server® 2008 R2 Functional Level
- Windows Server® 2008 Functional Level
- Windows Server® 2003 Functional Level
- Computers
- Windows Server® 2012 R2
- Windows Server® 2012
- Windows Server® Core 2012
- Windows Server® 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1
- Windows Server® 2008 with Service Pack 2 (64 bit and 32 bit)
- Windows Server® 2003 R2 with Service Pack 2 (64 bit)
- Windows Server® 2003 with Service Pack 2 (64 bit and 32 bit)
- Windows® 10
- Windows® 8.1
- Windows® 8 (64 bit and 32 bit)
- Windows® 7 with Service Pack 1 (64 bit and 32 bit)
- Windows Vista® with Service Pack 2 (64 bit and 32 bit)
- Windows® XP Professional with Service Pack 3 (64 bit and 32 bit)
- Network Attached Storage (NAS) Devices
- Dell FluidFS 5.0.002821
- EMC® Celerra® 7.0.52.1
- EMC® Celerra® 6.0.36.4
- EMC® Celerra® 5.6 with Server Message Block 1.0
- EMC® VNX 7.1.47.5
- EMC® VNX 7.0.35.3
- Isilon® OneFS® 7.1.0.0
- NetApp® Filer - Data ONTAP® 8.3 C-Mode
- NetApp® Filer - Data ONTAP® 8.2 C-Mode
- NetApp® Filer - Data ONTAP® 8.1 C-Mode
- NetApp® Filer - Data ONTAP® 8.1 7-Mode
- NetApp® Filer - Data ONTAP® 8.0.1
- NetApp® Filer - Data ONTAP® 8.X and above
- NetApp® Filer - Data ONTAP® 7.3.4
- Computers
- Windows Server® 2012 R2
- Windows Server® 2012
- Windows Server® Core 2012
- Windows Server® 2008 R2 with Service Pack 1
- Windows Server® Core 2008 R2 with Service Pack 1
- Windows Server® 2008 with Service Pack 2 (64 bit and 32 bit)
- Windows Server® 2003 R2 with Service Pack 2 (64 bit)
- Windows Server® 2003 with Service Pack 2 (64 bit and 32 bit)
- Windows® 10
- Windows® 8.1
- Windows® 8 (64 bit and 32 bit)
- Windows® 7 with Service Pack 1 (64 bit and 32 bit)
- Windows Vista® with Service Pack 2 (64 bit and 32 bit)
- Windows® XP Professional with Service Pack 3 (64 bit and 32 bit)
- Network Attached Storage (NAS) Devices
- Dell FluidFS 5.0.002821
- NetApp® Filer - Data ONTAP® 8.3 C-Mode
- NetApp® Filer - Data ONTAP® 8.2 C-Mode
- NetApp® Filer - Data ONTAP® 8.1 C-Mode
- NetApp® Filer - Data ONTAP® 8.1 7-Mode
- NetApp® Filer - Data ONTAP® 8.0.1
- NetApp® Filer - Data ONTAP® 8.X and above
- NetApp® Filer - Data ONTAP® 7.3.4
- SQL Server Instances
- SQL Server® Clusters
- SQL Server® 2016
- SQL Server® 2014
- SQL Server® 2012
- SQL Server® 2008 R2
- SQL Server® 2008 with Service Pack 2
- SQL Server® 2005 with Express Service Pack 3
- SQL Server® 2005 with Service Pack 3
- Exchange Servers
- Exchange Online™
- Exchange® 2016
- Exchange® 2013
- Exchange® 2010
- Exchange® 2007
- Exchange® Mixed Modes (2007-2010, 2010-2013, 2007-2013)
The following versions of Active Roles are supported as targets of Active Directory discoveries. See the Active Roles web site for the hardware and software requirements for your version of Active Roles:
- Active Roles v7.0.2
- Active Roles v6.9.0
The following versions of SQL Server® are supported for the Enterprise Reporter database. See the Microsoft® web site for the hardware and software requirements for your version of SQL Server®:
- SQL Server® 2016
- SQL Server® 2014
- SQL Server® 2012
- SQL Server® 2008 R2
- SQL Server® 2008 with Service Pack 2
- SQL clusters and database mirroring are supported for your deployment, including
- SQL Server® 2014 Always On
- SQL Server® 2012 Always On
- Using SQL Server Certificates
SSL Encryption of SQL Server Connections using Certificates
Enterprise Reporter can be configured to work with a SQL Server® instance. To secure communications while working with Enterprise Reporter, data sent over connections to the SQL Server can be encrypted using an SSL certificate.
The steps required to configure this encryption are as follows.
- Using the Microsoft Management Console (MMC):
- install the Certificates snap-in for the SQL Server® host computer
- import the certificate to the SQL Server® host computer
- Using SQL Server Configuration manager:
- configure the SQL Server® to use the certificate
- configure the SQL Server® to force encryption
- Restart the SQL Server® host computer
- Import the certificate to all Enterprise Reporter computers that will need to communicate with the SQL Server®, such as:
- Enterprise Reporter server host computer
- Enterprise Reporter nodes
- Enterprise Reporter Configuration Manager host computer
- Enterprise Reporter Report Manager host computer
- Enterprise Reporter Report Manager host computer
- Using the Microsoft Management Console (MMC):
To obtain links to the following required software, open the Enterprise Reporter Autorun.
- Microsoft®.NET Framework 4.0 (Full)
- Microsoft®.NET Framework 3.5 Service Pack 1
- Microsoft® Visual C++® 2012 Service Pack 1 Redistributable Package (x64) version 11.0.60610.1
- Microsoft® Visual C++® 2012 Service Pack 1 Redistributable Package (x86) version 11.0.60610.1
- Microsoft® Visual C++® 2010 Service Pack 1 Redistributable Package (x64) version 10.0.40219
- Microsoft® Visual C++® 2010 Service Pack 1 Redistributable Package (x86) version 10.0.40219
- Microsoft® Visual C++® 2005 Service Pack 1 Redistributable Package (x64) version 8.0.59192
- Microsoft® Visual C++® 2005 Service Pack 1 Redistributable Package (x86) version 8.0.59193
- Other Required Software
Microsoft® Excel® (required to view reports exported as spreadsheets)
- Microsoft® Excel® 2013
- Microsoft® Excel® 2010
- Active Roles Required Software
To collect Active Roles information, the following software is required on the computer where the Enterprise Reporter Configuration Manager is installed and on the computer where the Enterprise Reporter node is installed:
- ADSI Provider (the version must match the Active Roles version)
For more information and installation instructions, see the Active Roles Quick Start Guide. The following additional considerations are required:
- There must be a trust between the Enterprise Reporter domain and the Active Roles domain.
- The credentials used for the Active Roles discovery must have access to the Active Roles domain.
- Exchange Required Software
To collect Exchange® information, the following software is required on the computer where the node is installed:
- PowerShell 2.0
To collect Exchange® 2007 information, the following additional considerations are required:
- Exchange® 2007 Management Tools must be installed on the computer where the Enterprise Reporter node is installed and must be in the same forest as the 2007 Exchange Organization.
- It is highly recommended to put the computer where the Enterprise Reporter node is installed within the target Exchange® 2007 domain.
The following services are required on the Enterprise Reporter server and nodes.
- Net.TCP Port Sharing
The following services must be enabled on discovery targets for collections.
- Remote Registry
- Windows Management Instrumentation (WMI)
For more information see the release notes.
Resources
Improve Your Security Posture with Enterprise Reporter for Active Directory
Enterprise Reporter can help you improve your security posture. This tech brief describes the top 10 AD security reports you should run on a regular basis to reduce your attack surface and thwart attackers.
Modernizing Active Directory for Azure and Office 365
A move to the cloud requires Azure AD and Azure AD requires a modernized, on-premises AD. Failing this modernization, the complexities of integrating into Azure AD grow and the benefits of Office 365 shrink.
2017 Spotlight Report: Cloud Security
In this new report from the Information Security Community on LinkedIn, you will learn how your peers are approaching cybersecurity in the era of cloud, including the latest trends and benchmarks to gauge how your own organization stacks up.
Conversational Geek e-book: Hybrid AD Security Assessment
Active Directory (AD) security is a constantly moving target. With AD acting as the foundation for resources accessed both on premises and in the cloud, it’s critical to assess what state your AD’s security is in, understanding where to look and what to l
Conversational Geek e-book: Hybrid AD Security Investigation & Recovery
Changes in your AD environment can be indicative of a breach, leaving it unreliable. Explore AD security investigation and recovery plan best practices.
Surviving Office 365 Management Woes — An IT Pro's Guide to Understanding the Unexpected Challenges
Simplify Office 365 management with this survival guide
Active Directory and Azure AD Security Best Practices
Unless you’ve been hiding under a rock, it’s going to come as no surprise that Office 365 adoption is increasing rapidly. With primary drivers like Exchange Online, SharePoint Online and OneDrive, Office 365 is obtaining an average of around 1 million new
- More Resources
- Communities
- Events & Demos
- Research Docs
Take the next step
Related Products
Enterprise Reporter for Active Directory
Perform change history audits, security assessments and project planning with insightful reporting
Enterprise Reporter for File Storage Analysis
Easily perform capacity planning with efficient file storage analysis and reporting
Enterprise Reporter for SQL Server
Perform change history audits, security assessments and project planning with insightful reporting
Enterprise Reporter for Windows Servers
Perform change history audits, security assessments and project planning with insightful reporting
Change Auditor for Windows File Servers
Track, audit and receive reports on all Windows File Server real-time system changes
Change Auditor for Active Directory
Ensure security, compliance and control of AD and Azure AD.
Security Explorer
Manage Microsoft server security in real time from a single platform.
Support & Services
Product Support
Self-service tools will help you to install, configure and troubleshoot your product.
Support Offerings
Find the right level of support to accommodate the unique needs of your organization.