Gartner

Beyond Logging: Addressing Security and Compliance with Detailed Audit Trails Linked to Active Directory

Featuring Perry Carpenter, Gartner Security and Privacy Expert

Part One of the Three Part Expert Webinar Series
Strengthen IT Security and Enhance Compliance by Leveraging Microsoft Active Directory for Cross-Platform Identity and Access Management
Accountability is the cornerstone of secure and compliant IT environments. Organizations that cannot definitively link individual users' access to and activity on key systems risk security breaches or audit failures. The continuing spread of Linux, UNIX and Mac systems across the enterprise has increased the complexity and risk that IT organizations must manage given that UNIX/Linux identities may be managed system by system or with multiple directories. Many organizations are re-evaluating their identity and access management approaches.

Perry CarpenterThis webinar series features Gartner Analyst Perry Carpenter, who outlines best practices in identity and access management, and discusses the role Active Directory can play in centrally managing non-Windows systems and streamlining IT operations. The series also features Centrify solution experts who discuss and demonstrate how Centrify’s solutions are used to integrate heterogeneous systems with Active Directory to achieve significant security and compliance benefits.

Additional Webinars:  
Beyond Authentication
On Demand Replay

Utilizing Active Directory for Robust Access Control and Authorization for UNIX, Linux and Mac
Learn more »
Simplified SSO for Web and ERP
January 29, 2009
15:00 GMT
16:00 CET

Leveraging Active Directory-Based Single Sign-On to Address Security and Compliance for Web and Enterprise Applications
Learn more »

Beyond Logging:
Addressing Security and Compliance with
Detailed Audit Trails Linked to Active Directory		 On Demand Replay
Today’s demanding government and industry regulations require organizations to prove the effectiveness of their authorization and access controls. Capturing login events is not sufficient. Capturing keystrokes is not sufficient. To be compliant (and avoid fines, loss of market trust, and more), auditing solutions must go beyond conventional logging practices. Who does what on which systems must be tracked, and the results of unauthorized actions must be known. Linking UNIX and Linux activity to individual users has always proved difficult. Typically, numerous administrators share root logins, service accounts, or other user IDs. Such conditions are cumbersome to manage, and make it difficult to prove to auditors that your processes are solid.

Join this event to learn about best practices in cross-platform auditing and compliance, and how Centrify’s Active Directory-centric solution, DirectAudit, addresses these important issues.

Perry Carpenter, Gartner Analyst will outline:
  • Critical features security solutions must have to address best practices for cross-platform environments, including UNIX and Linux systems.
  • The best ways to consistently comply with numerous regulatory requirements like PCI, SOX, CobiT, GLBA, Basel II, and HIPAA (among many others).
  • The advantages of definitively tying audit trails to specific Active Directory identities.

David McNeely, Centrify Director of Product Management will discuss:
  • DirectAudit's ability to go beyond log aggregation and actually audit user session activity across heterogeneous systems.
  • DirectAudit's comprehensive logging capabilities that link individual unix login session activities to the actual AD Person responsible for the actions.
  • The diagnostic troubleshooting capabilities of DirectAudit, including the ability to replay and report on user activity (keystrokes as well as session output) to identify changes to key resources.
  • How DirectAudit helps prevent insider attacks through a central, real-time view of who has access to critical UNIX/Linux systems, and what they are doing.

You will also receive a complimentary white paper about improving security and compliance with Active Directory by establishing detailed user audit trails.

Register today »