Active Directory change auditing is an important procedure for limiting unauthorized changes and errors to AD configuration. One single change can put your organization at risk, introducing security breaches and compliance issues. Built-in Active Directory auditing lacks many important features and doesn't have reporting capabilities. Careful analysis of multi-megabyte Security logs can take enormous resources and still never paint the whole picture.
Netwrix Active Directory Change Reporter is a free tool that reports the changes made to Active Directory and delivers a summary and detailed information on a daily basis. The report includes the 4 "W"s - Who, What, When, and Where - of all changes and includes "before" and "after" values for each setting. This report lists changes made to AD and Exchange configurations, mailboxes, AD schema, and many more.
Generated data can be used to:
* Monitor day-to-day administrative activities.
* Prepare compliance reports for your SOX, GLBA and HIPAA auditors.
Netwrix Active Directory Change Reporter records all modifications, including both user and administrative activity, and e-mails daily reports to AD administrators detailing every Active Directory change. Collected audit data is archived and can be stored for years, so you can build a summary of changes made to Active Directory during any period and drill down to detailed information as necessary. This archiving function allows organizations to analyze any policy violations, adhere to security best practices and maintain established internal policies.
The tool is provided free of charge for use by organizations and individuals.