ManageEngine ADSolutions vs Netwrix Auditor

Comparison of ManageEngine ADSolutions suite of products with Netwrix products.

Features	Description	ManageEngine ADManager Plus	NetWrix
Active Directory Account Management
User Life Cycle Management	Create, Manage and Delete User Accounts, Computers, Groups and Contacts in Active Directory
User Account De-provisioning	Delete User account when they become inactive or disabled or expired
Restore Deleted Users in bulk	Restore deleted users in Active Directory
Group Life Cycle Management	Create and Manage Security and Distribution Groups in Active Directory
Computer Life Cycle Management	Create and Manage Computers in Active Directory
Restore Deleted Computers	Restore Deleted computers in bulk
Contact Life Cycle Management	Create and manage Contacts in Active Directory
Bulk Provisioning/ Re-provisioning with CSV import	Create Users, Computers, Groups and Contacts and edit their attributes in Bulk by importing them from a CSV file
Template based Provisioning/Re-provisioning	Create custom templates with common attributes for provisioning/re-provisioning of Users, Computers, Groups and Contacts
Exchange Mailbox Management
Bulk Exchange Mailbox Provisioning	Create Exchange Mailboxes in bulk by importing a CSV file
Bulk Mailbox Re-provisioning/De-provisioning	Modify attributes of mailboxes in bulk
Bulk Mailbox Migration	Migrate Exchange Mailboxes from to the required version in a single click
HelpDesk Delegation
Role-based / OU-based Secure Delegation	Delegate different tasks to a particular user with a scope limited to specific Organizational Units and also track their activities
Active Directory Workflow
Customizable Workflow	Build a workflow structure, with required number of workflow agents based on your needs
Active Directory Automation
Complete Automation of vital AD tasks	Automate crucial and often repeated Active Directory tasks
Additional Features
File Server Management	Add file servers in your network and manage their NTFS and Share permissions
GPO Management	Create GPO objects and link them to computer and user objects
AD Search and Employee Search	Search Active Directory for Users, Computers, Groups and Employees contact information

Features	Description	ManageEngine ADAudit Plus	Netwrix Auditor for Active Directory
Active Directory
Logon auditing	Provides information on both successful and failed logons.
Account lockout analysis	Notifies of a lockout along with information on the reason of lockout.
Object change audit	Provides information on user, computer, group, and OU management actions.
GPO change audit	Provides information on GPO management actions and GPO settings changes.
Permission change audit	Provides information on changes to objects' permissions.
Schema and configuration change audit	Provides information on changes made to schema and objects inside the configuration containers such as sites.
Azure AD audit	Provides information on successful and failed user logons; changes to Azure AD users, roles, groups, devices, and applications.
File servers
File/folder access audit	Provides information on file/folder read, create, delete, and modify actions.
File/folder permission change audit	Provides information on file/folder DACL and SACL changes.
File/folder failed attempts audit	Provides information on failed attempts to read, write, and delete file/folder.
Supported environments	Windows, Windows failover cluster, NetApp, and EMC.
Windows servers
Local user logon auditing	Provides information on both successful and failed logons on local machines.
Local object change audit	Provides information on local user and group management actions.
Local policy change audit	Provides information on changes to local security policy.
File integrity monitoring	Provides information on new programs and modifications to executable files.
AD Federation Service auditing	Provides information on both successful and failed AD FS logons.
LAPS auditing	Provides information on who is viewing or modifying local admin credentials.
User work hour tracking	Provides information on employees' actual work hours (excluding idle time).
Printer auditing	Provides information on printer usage.
Key functionalities
Real-time auditing	Allows tracking of security events in real-time.
Real-time alerts	Provides instant notifications upon of security events.
User behavior analytics	Allows detection of abnormal user behavior based on users' previous activity patterns.
Video recording of user screen activity	Allows capturing of user screen activity even if no logs are produced.
Who, when, where, and what of changes	Provides complete user audit trail— who did what, when, and from where.
Before and after values of changes	Provides information on changed attribute values (before and after) of AD objects.
Quick search	Allows tracking down specifics quickly.
Graphs	Provides a visual representation of audit data.
Prepackaged reports	Provides audit data with one click.
Report customization	Allows creation of reports according to user needs.
Compliance reports	Provides prepackaged IT compliance reports for SOX, HIPAA, PCI, GLBA, and GDPR.
Automated report generation	Allows automatic generation of reports at user defined time intervals.
Automated report delivery	Allows automatic emailing of reports to user specified email addresses.
Export of reports	Allows the export of reports to multiple formats like PDF, XLS, CSV, and HTML.
Alert delivery	Allows email and SMS delivery of alerts.
Alert thresholds	Allows configuration of thresholds based alerts.
Incident response	Allows execution of a predetermined action when an alert gets triggered.
Long-term log retention	Allows long term retention of audit data.
SIEM integration	Allows forwarding of audit data to SIEM solutions.
Web-based console	Allows access to the product over the web.
Multiple domain auditing	Allows configuration of multiple domains for auditing.
Role-based access	Allows role-based user access to product.
Evaluation and purchase
Evaluation	Provides online demo, free instant trial, and personalized demo.
Ease of installation	Does not require professional assistance to deploy the solution.
Licensing and pricing	Does not require professional assistance to deploy the solution.	Licensed based on the number of Domain Controllers/ File servers/ Windows servers/ Azure AD tenants Pricing starts at $595 (annual subscription fee for 2 DCs).	Licensed based on number of Active Directory user accounts. Pricing starts at $12* per AD user.

Features	Description	ManageEngine ADSelfService Plus	Netwrix Password Manager
Key Features
Password Reset / Account Unlock	Users can reset their forgotten passwords and unlock their lockedout Windows accounts without calling helpdesk
Password Expiry Notification	Notify users to change password before it expires via email		(Available as a separate product)
Multi-Platform Password Synchronizer	Synchronize password and account changes with a wide range of cloud-based and on-premises applications	(Supports Google Apps, Office 365, Salesforce, HP UX, IBM AS400, Oracle DB, Oracle Ebusiness Suite)	(Supports Google Apps and Salesfoce only)
Employee Directory Update	Employees can update their profile information in Active Directory
Employee Search	Users can search for their colleagues information
Group Subscription	Users can opt-in and opt-out of Secruity and Distribution Groups at their will based on policies set by administrator
Change Password	Users can change their password from anywhere, anytime
Mobile Password Management	Self-Service Password Reset and Account Unlock via Mobile Devices
Client Software (GINA/Credential Provider) extension	Password Reset/Account Unlock from Windows logon screen (CTRL+ALT+DEL)
Built-in Reporting Mechanism	Reports on various aspects of user actions and their password status
Identity Verification Methods	Users identity are verified before they can reset their password or unlock their account	Security Q&A and SMS/Email based Pin code Verification	Security Q&A and Email Verification
Additional Features
Easy Installation and Deployment	Easy Installation and Deployment		(Requires .NET framework v3.5 SP1 installed and IIS 6.0 or above)
Multi-language support	Support for multiple languages	(Supports 15 languages)	(Supports 13 languages)
Automatic Password Reset / Account Unlock	Expired passwords/locked-out accounts are automatically reset/unlocked
Multiple Enrollment Options	Force Enrollment, Enrollment Reminders and Automatic Enrollment Options
Encryption standards	Encryption protocols used to securely store the Security Questions & Answers	SHA-2 and MD5	MD5 only
Licensing & Pricing
License Type	Type of Licenses available for purchase	Annual Subscription & Perpetual Model based on no. of users	Perpetual only based on no. of users
Starting Price	Price of the products for 500 users	$1490 (price of perpetual license)	Password Manager - $2750 plus Expiry Notifier - $550

Features	Description	ManageEngine Exchange Reporter Plus	Netwrix Exchange Change Reporter
OWA and Active-Sync Reports
OWA Access Report	Reports on OWA access to Exchange with info on the user, client IP, browser and server used in the process
ActiveSync Request and General Report	Reports on sync requests coming from all ActiveSync devices and on policies concerning ActiveSync
Exchange Traffic Reports
Mailbox Traffic Report	Mailbox traffic data based on both numbers and size
Organization Traffic Report	Track the overall number and size of messages sent and received in an Exchange organization
Exchange Mailbox Reports
Mailbox Size Report	Get the current mailbox size of Exchange users
Mailbox Size Growth Report	Report on mailbox size growth over a period of time
Mailbox Size Restrictions Report	Report on users with specific mailbox storage limits
Mailbox Content Report	Report to monitor emails based on keywords, attachment size, extension, etc.
Other Reports
Distribution Lists Report	Reports on Distribution Lists, its members and Inactive Distribution Lists
Exchange Auditing
Non-Owner Mailbox Logon Auditing	Report on all non–users who have gained excessive rights to access other users’ mailboxes
Mailbox Permission Changes Auditing	Reports on all critical changes made to mailbox permissions with details of who changed what
Mailbox Property Changes Auditing	Report on the changes made to the mailbox properties
Store Changes Auditing	Report on any store mount or dismount and store status
Address List and Recipient Policies Auditing	Report on changes to the exchange address lists and recipient policies
Store Group Auditing	Auditing of addition, deletion and modifications of Storage Group and Stores
Additional Features
Report Scheduler	Reports can be exported for later use in a targeted file format and scheduled for automatic email delivery
Custom Reports	Create your own custom reports based on your requirements
Licensing & Pricing
License Type	Type of Licenses available for purchase	Annual Subscription & Perpetual	Perpetual only
Starting Price	Price of the products	$1240 (perpetual license for 200 mailboxes)	$2200 (for 200 users). For both MS Exchange and AD Auditing.

Disclaimer: While much care has been taken to prepare this document, we give no warranties whatsoever, including but not limited to the accuracy of any information contained therein.