Active Directory-based authentication, access control and role-based privilege management for Windows, Linux & UNIX
Standard Edition + privileged user auditing
Enterprise Edition + encryption of data-in-motion and server isolation
Any Edition + single sign-on for SAP, Apache and J2EE/Java applications
Single sign-on for cloud apps + mobile device supportMac Edition
Active Directory-based authentication and Group Policy management for Macs + mobile device supportPremium Edition
SaaS and Mac Editions + mobile device supportCentrify for Samsung KNOX
Active Directory-based SSO, MCM and MDM for KNOX-enabled devices
Centrify DirectAudit captures historical user activity to establish accountability and ensure identity related compliance with government regulations and industry mandates. For a detailed feature explanation, download our free white paper, Privileged User Activity Auditing: The Missing Link for Enterprise Compliance and Security.
Centrify DirectAudit captures and stores a detailed recording of privileged user sessions on Windows, UNIX and Linux systems. Unique audit policies can easily be configured with options to leverage video capture only on the most critical systems, or for users in a specific role, and to audit Centrify administration activity such as the management of Zones. The Centrify Audit Analyzer gives you a global view of privileged user sessions across your audited environment, and proof of regulatory compliance for auditors through out-of-the-box reports that capture both current and historical sessions grouped by server, user, or other criteria.
You can see what happened in a specific session at a high level by viewing a command/event summary, or you can replay the video to see every action taken by a user and every system response. You can pause, rewind, fast-forward, scrub through the timeline, or jump to a specific point in the video replay. This unique playback feature gives IT security and IT auditors the ability to proactively identify insider threats, and perform forensic investigation into which privileged user did what after an incident occurs.
Out-of-the-box queries and compliance reports provide information on both active and historical sessions. The flexible query builder supports the creation of customized reports based on search options including by user, machines, time period, type of event, and DirectAuthorize role. For example, a compliance report can easily be configured to generate a report on everyone in a privileged role who logged on remotely to a specific set of machines during the previous week.
User session metadata is captured to enable integration with reporting tools. DirectAudit stores audit information in an SQL database, which enables robust querying by log management tools, and an event serialization service enables integration with SIEM and alerting tools.
You can configure DirectAudit to trigger auditing sessions for specific users, computers or DirectAuthorize roles. DirectAudit policies can be applied to a Global Zone or Child Zone, enabling secure delegation of audit policy settings.
The Audit Analyzer provides real-time visibility into user sessions on every audited Windows, UNIX and Linux system. For each session you can see who is currently logged in, and you can immediately drill down to see what they are in the process of doing. Detecting insider threats before a security breach happens can save money and reputation for an organization.
By centralizing your access controls, privileges, and privileged user's activity with Centrify Server Suite you can quickly generate comprehensive reports that prove identity related compliance with government regulations and industry mandates. Auditors can be handed reports that document which users have access to what servers and with what administrative privileges. Privileged activity is associated with an individual and recorded versions of their entire privileged sessions are available on demand.