Auditing vs. Monitoring of Active Directory

0

I just finished a class where I had both auditors and administrators in attendance. It was one of the best groups I have had for that reason. From the class I learned that it is not always “known” what the difference is between auditing and monitoring. Auditing is performed by auditors and monitoring is typically performed by administrators. There is only a slight difference between the two, but the difference is rather important and can make a world of difference when it’s time to report on your log data.. 

Auditing is both a technology and a role. The technology is built into every Windows computer and has been for years. Going back to Windows NT, Microsoft has provided auditing. Domain contr

Monitoring of Active Directory Changes Made Easy

0

There are some things that Microsoft builds into their product that are just amazing, while other things that are just pathetic! When it comes to monitoring Active Directory, we have both. However, by using the good and supplementing the bad with other options, a fantastic solution can be achieved!

The Good and Bad of Active Directory Monitoring

The good that Microsoft provides with regard to Active Directory monitoring is with regard to the detailed logs that can be generated. Microsoft provides both “Auditing” and “Advanced Auditing” for domain controllers that are running Windows Server 2008 R2 and greater. When auditing is configured for the different objects (users, groups,

Free Webinar: Active Directory Monitoring and Auditing Like Never Before!

0

Do you struggle with monitoring and tracking of Active Directory changes? Do you want to monitor Active Directory changes but have given up due to the complexity? 

Microsoft provides some very detailed tracking capabilities in Active Directory by using auditing and advanced auditing. These technologies are not new in concept, but some of the details are radical and new to most admins. Setting up auditing and advanced auditing can be very tricky and not 100-percent clear. Then, after you have events being logged, you must manually sift through the logs to find what you want. Tracking down an individual event can be like searching for a needle in a haystack …if the event is even still in the log t

Meet Us at Oracle OpenWorld

0

Meet us at Oracle OpenWorld

Every year at Oracle OpenWorld, Oracle technologists, customers, and partners come together to learn, discuss, and optimize Oracle. This year, it’s slated to be held at the Moscone Center in San Francisco between September 22 and 26, 2013. We’ll be there this year as well. So, if you plan to be at the event, join us at booth #2220.

At the booth, our experts will be exhibiting and conducting live demos of Applications Manager, our application performance monitoring solution. Using Applications Manager, you can proactively track performance of your business-critical applications and servers, regardless of whether they are running on physical, virtual, or cloud environments. You can also monitor the …

Talk to ME Tuesday: Advice about Investing in Security Management

0

ManageEngine continues our weekly blog series called Talk to ME Tuesday. Each week we discuss interesting topics from the world of technology with you, the people that live and breathe it everyday. 

People are spending more money in security management, said Andrew Hay, Senior Analyst for 451 Research.

Hay believes that the rise in reporting of high profile breaches has made more people think about investing in overall security management rather than just having firewalls or intrusion detection systems.

“You need something to orchestrate those disparate data sources and combine things to get a better view of your security environment,” said Hay.

If you’re looking for a security management solu…

Talk to ME Tuesday: IT Pros Admit to Challenges They Face Monitoring Their Environment

0

ManageEngine continues our weekly blog series called Talk to ME Tuesday. Each week we discuss interesting topics from the world of technology with you, the people that live and breathe it everyday. 

You’ve got tools monitoring your network, but do you really know everything that’s going on? Are the people, processes, and monitoring tools all in place, talking to each other and all running smoothly? At the 2012 Interop conference in Las Vegas, I asked the assembled IT pros, “What challenges are you facing monitoring your environment?” Here are their answers.…

Talk to ME Tuesday: IT Pros Admit to Challenges They’re Facing Securing Their Environment

0

ManageEngine continues our new blog series called Talk to ME Tuesday. Each week we’ll discuss interesting topics from the world of technology with you, the people that live and breathe it everyday. So get ready to join the conversation and talk to ME.

Oh, how nice it would be to know more about intrusions, their validity, and severity. And how well are you securing that environment. Do you know what you don’t know? Or is stuff slipping through both your security defenses and your monitoring that you’re completely in the dark about a lot of stuff?

At the 2012 Interop conference in Las Vegas, I asked the assembled IT pros, “What challenges are you facing securing your environment?” Here are their answers…

Site to Site traffic monitoring : A video tutorial

0

The Site to Site option under IP Groups in Manage Engine NetFlow Analyzer lets you monitor traffic between two specific sites based on IP Address or IP Network. Please watch the video given below to know more about the same.

You can also go through the blog about the Site to Site monitoring from here .

Reach us on Facebook at NetFlow Analyzer TAC

Catch up with the latest updates in the industry, through our LinkedIn community Bandwidth Monitoring and Traffic Analysis for Enterprises


Praveen Manohar

NetFlow Analyzer Technical Team

Download  |  Interactive Demo   | Twitter  | Customers

Bandwidth monitoring with NetFlow in Palo Alto firewall

0

Palo Alto devices from version 4.1 onwards started NetFlow support. All the NetFlow configuration can be done from the device UI itself.

We were not able to get any screenshot which showed the NetFlow configuration for Palo Alto devices. Please find below the details of the tabs which will give you an idea of how to configure NetFlow on these device.

There are two mail steps to configure NetFlow on Palo Alto device:
1) Define a NetFlow server profile : specifies the frequency of the export along with the Netflow servers that will receive the exported data.
2) Assigning the profile to firewall interface :all traffic flowing over this interface is exported to the specified servers.

Step 1:
For defining a NetFlow se…

Barracuda NG Firewall now supports IPFIX

0

Barracuda NG Firewall released their new firmware 5.2.3, curious to know whats new??

Visit the link to know the complete set of features:
http://blog.barracuda.com/pmblog/index.php/2012/03/14/barracuda-ng-firewall-5-2-3-firmware-released-2/

Here, in this blog we are discussing what is important for us, yes its IPFIX. Firmware release 5.2.3 introduces IPFIX streaming support. NetFlow Analyzer supports IPFIX flows in addition to NetFlow, sFlow, Appflow and many more flow formats.  These IPFIX packets can be send to NetFlow Analyzer server and start report generation for Barracuda Firewall.

Please find below the screenshot of IPFIX configuration on Barracuda NG Firewall, we found this fr…