Widely recognized
ADAudit Plus has been recognized as a Gartner Peer Insights Customers' Choice for Security Incident and Event Management for four consecutive years.
Direct Inward Dialing: +1 408 916 9892
ManageEngine ADAudit Plus,
Three of every five Fortune 500 companies trust us to manage their IT
| Feature | Description | ADAudit Plus | Quest Change Auditor |
|---|---|---|---|
| Logon auditing | Monitors all Windows logon activity—from logon failures to logon history | Supported | Supported |
| Account lockout analysis | Notifies of a lockout and helps analyze the source of authentication failure | Supported | Supported |
| Object change audit | Monitors changes to users, groups, OUs, GPOs (including Group Policy setting changes), and other AD objects | Supported | Supported |
| GPO misconfiguration detection | Compares GPO configurations against baseline standards to identify misconfigurations | Supported | Not supported |
| Privileged user monitoring | Monitors actions carried out by administrators and other privileged users | Supported | Supported |
| AD attack detection | Detects 25+ AD attacks, including Kerberoasting, DCSync, and pass-the-ticket | Supported | Supported |
| PowerShell auditing | Monitors PowerShell processes along with commands executed in them | Supported | Not supported |
| File auditing | Monitors file access events, permission changes, and more | Supported | Supported |
| Supported file environments | Windows, NetApp, and EMC | SupportedPlus Synology, Hitachi, Huawei, Amazon FSx, QNAP, Azure, Nutanix, and CTERA files | Supported |
| Microsoft Entra ID auditing | Monitors successful and failed user logons; changes to users, groups, roles, applications; and more | Supported | Supported |
| Cloud risky configuration detection | Identifies risky Azure, AWS, or GCP configurations, like allowing public access to a virtual machine | Supported | Not supported |
| User behavior analytics | Allows detection of abnormal user behavior based on users' previous activity patterns | Supported | Supported |
| Incident response | Allows execution of a predetermined action when an alert gets triggered | Supported | Not supported |
| Agent-based and agentless log collection | Allows options for agent-based and agentless log collection | Supported | Not supportedAllows for agent-based log collection only |
| Ticketing tool integration | Integrates with IT help desk ticketing solutions to automate ticket generation for crucial AD events | SupportedServiceNow, ManageEngine ServiceDesk Plus, and Zendesk | Not supported |
ADAudit Plus has been recognized as a Gartner Peer Insights Customers' Choice for Security Incident and Event Management for four consecutive years.
ADAudit Plus is licensed per server, unlike other IT auditors which are licensed per user. With per-server licensing, even with a growing number of users each year, you can continue to ingest log data without additional costs.
Go from downloading ADAudit Plus to receiving predefined reports and alerts in under 30 minutes, without any professional help.
ADAudit Plus provides capabilities like change auditing, logon monitoring, file tracking, compliance reporting, attack surface analysis, response automation, and backup and recovery for diverse IT systems.
