Monitoring of domain controllers in real time ensure that we capture any configuration changes to the Active Directory by unauthorized users – typically a malicious code or malware.

User Reports

• Logon/logoff activity – during and off office hours.
• Alerts based on time, location of access.
• Multiple login alert.
• Alerts with Login correlation to access control.

Security Group Reports

• Changes to Security Groups.
• Users Impacted.
• Admins making the changes with timeframes.

Computer Reports

• Computer wise actions performed.
• Correlation of IP with users.

Distribution Group Reports

• Changes in distribution groups.
• Admins making the changes with timeframes.