Direct Inward Dialing: +1 408 916 9892
ManageEngine ADAudit Plus is a UBA-driven Active Directory, file server, Windows server, and workstation security and compliance solution.LepideAuditor provides complete visibility into the changes being made to your Active Directory,Group Policy, and file servers.
The purpose of this document is to compare the Active Directory (AD) and file server auditing capabilities of ManageEngine ADAudit Plus and LepideAuditor.
|Features||Description||Manage Engine ADAudit Plus
|LepideAuditor for AD and File Server|
|1. Active Directory|
|1.1 Logon auditing||Provides information on both successful and failed logons|
|1.2 Account lockout analysis||Provides information on locked out user accounts along with probable source of lockout|
|1.3 User work hour tracking||Provides information on employees' actual work hours (displays active and idle times separately)|
|1.4 Object change auditing||Provides information on changes to AD objects such as users, computers, groups, OUs, and more|
|1.5 GPO change auditing||Provides information on GPO management actions and GPO settings changes|
|1.6 Permission change auditing||Provides information on changes to AD objects' access and audit permissions|
|1.7 Configuration change auditing||Provides information on changes made to schema and objects inside the configuration container|
|1.8 AD Federation Service auditing||Provides information on both successful and failed AD FS logons|
|1.9 LDAP authentication auditing||Provides information on LDAP authentication events|
|1.10 PowerShell auditing||Provides information on PowerShell processes along with the commands executed by them|
|1.11 Azure AD password protection auditing||Provides information on password set and change activities (when password protection feature has been enabled on on-prem AD)|
|1.12 Azure AD auditing||Provides information on successful and failed user logons; changes to Azure AD users, groups, roles, applications, and more|
|2. File servers|
|2.1 File/folder access auditing||Provides information on file/folder read, create, delete, and modify actions|
|2.2 File/folder permission change auditing||Provides information on file/folder DACL and SACL changes|
|2.3 File/folder failed attempts auditing||Provides information on failed attempts to read, write, and delete files/folders|
|2.4 File integrity monitoring||Provides information on changes to operating system (OS), software program, and other critical local files residing on computers|
|2.5 Supported environments||Windows, NetApp, and EMC||
|3. Key functionalities|
|3.1 Real-time alerting||Provides instant notifications of security events|
|3.2 User behavior analytics||Allows detection of abnormal user behavior based on users' previous activity patterns|
|3.3 Video recording of screen activity||Allows capturing of user screen activity even if no logs are produced|
|3.4 Who, when, where, and what of changes||Provides complete user audit trail— who did what, when, and from where|
|3.5 Before and after values of changes||Provides information on changed attribute values (before and after) of AD objects|
|3.6 Change rollback||Allows roll back of changes made to AD, with a single click|
|3.7 Graphs||Provides a visual representation of audit data|
|3.8 Quick search||Allows tracking down specifics quickly|
|3.9 Prepackaged reports||Provides audit data with one click|
|3.10 Report customization||Allows creation of reports according to user needs|
|3.11 Compliance reports||Provides prepackaged IT compliance reports for SOX, HIPAA, PCI, GLBA, FISMA, and GDPR|
|3.12 Automated report delivery||Allows automatic emailing of reports to user-specified email addresses|
|3.13 Export of reports||Allows the export of reports to multiple formats like PDF, XLS, CSV, and HTML|
|3.14 Alert delivery||Allows email and SMS delivery of alerts|
|3.15 Alert thresholds||Allows configuration of thresholdbased alerts|
|3.16 Incident response||Allows execution of a predetermined action when an alert gets triggered|
|3.17 Long-term log retention||Allows long term retention of audit data|
|3.18 SIEM integration||Allows forwarding of audit data to SIEM solutions|
|3.19 Web-based console||Allows access to the product over the web|
|3.20 Role-based access||Allows role-based user access to product|
|3.21 Architecture||Offers both agentless and agentbased audit data collection|
|4. Evaluation and purchase|
|4.1 Evaluation options||Provides free instant trial and personalized demo||
+24x7 live online demo instance
|4.2 Ease of installation||Does not require professional assistance to deploy the solution|
|4.3 Licensing and pricing||-||Licensed based on the number of: Domain Controllers
3.Azure AD tenants
|Licensed based on number of AD user accounts*|
* - self-service, SSO, auditing, and other components cost extra.
CAMH will be able to save close to $26,000 a year on service desk calls related to Active Directory password resets and locked accounts, and will see a return on investment within the first six months of product implementation.
Judy OlivierProject Manager, CAMH
This tool helps me be in command of the technical environment in my Active Directory network. It is easier to find logs and manage more effectively. The cost for the many features got our attention.
Diego PontesTecnisa SATecnisa SA
Just about the best piece of security software that would put a smile on any security administrator
Jacinto GodinhoAdministrator: Quality Assurance and IT Security, Al-Ahli Bank of Kuwait
ManageEngine ADAudit Plus is a real-time change auditing and user behavior analytics solution that helps keep your Active Directory, Azure AD, member servers, and workstations secure and compliant.
For more information about ADAudit Plus, please visitwww.manageengine.com/products/active-directory-audit.
Your download should begin automatically in 15 seconds. If not, click here to download manually.
Thank you for your interest in ManageEngine ADAudit Plus. We have received your request for a price quote and will contact you shortly.
Thank you for your interest in ManageEngine ADAudit Plus. We have received your request for a personalized demo and will contact you shortly.
Disclaimer: ManageEngine does not guarantee the accuracy of any information presented in this document, and there is no commitment, expressed or implied, on ManageEngine’s part to update or otherwise amend this document. The furnishing of this document does not provide any license to patents, trademarks, copyrights or other intellectual property rights owned or held by ManageEngine.