Lepide Auditor for

Our Active Directory auditing tool enables effective monitoring, auditing, and reporting on all Active Directory states and changes. Identify risk, monitor common attack paths, and detect attacks in real time, all from a single platform.

Or Deploy With Our Virtual Appliance

Thousands of companies use Lepide to protect their data and detect threats

See How Lepide Audits Active Directory in Our Interactive Demo

in-browser demo
Let’s take a look at how the Lepide Data Security Platform works. I’m ready when you are!
Launch in-browser demo

Active Directory Auditing Software

Lepide Auditor for Active Directory provides a scalable means of auditing changes made to configurations and permissions. Get the security intelligence you need to properly protect and audit Active Directory, including the “who, what, where, and when” of all changes made. Bolster Active Directory security, speed up investigations, mitigate the risks of privilege abuse and meet compliance requirements.

Detailed Change Auditing and Reporting - icon Detailed Change Auditing and Reporting

Audit all changes to Active Directory and Group Policy, with before and after values of every change and the answers to the who, what, when and where questions.

Track and Audit AD Logon Activities - icon Track and Audit AD Logon Activities

Improve access controls with reports on failed logon events, concurrent logon sessions, logon history, users logged on to multiple computers and much more.

Permissions and Configurations Reports - icon Permissions and Configurations Reports

Understand your AD structure with in-depth reports on the current state of users, groups, AD permissions, GPOs, GPO settings, and more.

Achieve and Maintain Compliance - icon Achieve and Maintain Compliance

Generate pre-defined Active Directory audit reports that are mapped to specific compliance regulations, including GDPR, HIPAA, PCI, CCPA and more.

Troubleshoot Account Lockouts - icon Troubleshoot Account Lockouts

Helps you track account lockouts source and provides option to unlock them. Investigate which tasks, services, or processes causing account lockouts.

User Behavior Anomaly Spotting - icon User Behavior Anomaly Spotting

Improve your ability to detect and respond to insider threats and compromised accounts with proactive anomaly spotting and behavioral analysis.

Monitor Common Attack Paths - icon Interactive Searching, Sorting, and Filtering

Quickly and easily sort your AD Auditing data and refine your results as needed. Save searches to create custom reports for your specific needs.

Rollback Unwanted Changes - icon Rollback Unwanted Changes

Rollback any unwanted or unplanned change in Active Directory to its original value. You can even retrieve objects from tombstone and recycled states.

Identify Inactive Users in Active Directory - icon Identify Inactive Users in Active Directory

Audit and report on your inactive users in AD. Inactive users are often an entry point for attackers. Spot and manage inactive users to reduce your threat surface.

Automated Password Expiration Reminders - icon Automated Password Expiration Reminders

Automatically remind your users to regularly change their passwords to maintain a compliant and secure password policy.

Spot Users with Non-Compliant Passwords - icon Spot Users with Non-Compliant Passwords

Identify which of your users have passwords that are set to never expire. This is a potential security threat and breach of compliance regulations.

Alert on Changes and Threats in Real Time - icon Alert on Changes and Threats in Real Time

Get instant visibility over potential threats and unwanted changes with real time alerts. Automate your response with script execution off the back of alerts.

See More

Want to see it in action?

Take a virtual tour of the Lepide Data Security Platform in our web-based demo. See how Lepide aligns with your use case, whether it be ransomware, Active Directory security, Microsoft 365 security, data protection, data access governance or more.

Launch in-browser demo
In-Browser Demo - image

A Complete Active Directory Auditing Solution for Your Needs

Leverage the Lepide Active Directory auditing software to address critical business problems that require urgent attention. Reduce your threat surface area, detect insider threats and compromised user accounts, and simplify IT operations and management tasks with our complete AD auditing solution.

Bird’s Eye View of All Risks to Active Directory Security

Our interactive dashboards give you all the critical Active Directory auditing information you need to properly visualize your AD structure and spot critical changes. Easily audit permissions and configuration changes, spot potentially dangerous security states that need immediate attention, and monitor the health of your AD. Customize the dashboards to suit your specific needs.

AD risk assessment dashboards
Easily Audit the Structure of Your Active Directory

Active Directory structures can become complex and difficult to understand as an organization grows and evolves. Attackers can easily exploit a lack of visibility over this structure. Our Active Directory audit software gives you the ability to easily see who has what levels of access and how they got them so that you can easily visualize your AD structure.

Prepare an Incident Response Mechanism - screenshot
Detect and Respond to Active Directory Threats in Real Time

Delve into dozens of pre-defined Active Directory modification reports to get instant insight into all critical modifications that could indicate security risk. Spot modifications to infrastructure, containers, users, computers, groups, and more. Pre-defined threat models capture suspicious or unwanted behavior/changes in real time and can send out alerts or trigger automated responses to contain the threat.

AD risk assessment dashboards
Investigate Insider Threats and Compromised Accounts with Ease

Our Active Directory auditing tool gives you the ability to easily investigate insider threats and compromised user accounts with a detailed audit trail and interactive searching, sorting, and filtering. Investigating incidents using the native audit log in AD is near impossible. With Lepide, you can demonstrate effective and efficient incident investigations and threat response.

AD risk assessment dashboards
Reduce Your Active Directory Threat Surface to Minimize Risk

The Lepide Active Directory auditing software enables you to identify potential areas of risk within your Active Directory security states. Identify inactive users, open shares, stale data, users with non-compliant passwords, misconfigurations and excessive user permissions, so that you demonstrate your commitment to reducing overall security risk for one of the most common security threat entry points; your Active Directory.

AD risk assessment dashboards
Simplify IT Operations and AD Management Tasks

Our Active Directory auditing tool helps IT teams simplify and automate often time-consuming tasks and helps to reduce downtime from common IT helpdesk requests. Easily identify the source of account lockouts, restore deleted objects with the click of a button, remind users when their passwords are about to expire, and more.

AD risk assessment dashboards

What We Audit in Active Directory

Our Active Directory auditing software helps organizations overcome the limitations of native auditing, by aggregating event log data into “single-pane” reports. Below is a non-exhaustive list of what changes you can track with our Active Directory auditing tool.

gartner peer insights

We use Lepide for the security of our Azure and On-prem environment, its real time alert system is awesome!

gartner rating

Our Success Stories

Western Connecticut Health Network

Lepide is straightforward to use and effective right off the bat. Plus, the level of patience, attentiveness and technical knowhow is far beyond most support and sales teams I’ve seen before.

Ratings Drayke Jackson Security Engineer Drayke Jackson
Edinburgh Napier University

We chose Lepide as they were able to offer us threat detection and response, and a way of separating out reporting duties to a web console – all from one platform.

Ratings Kevin Gallagher Senior Systems Administrator Kevin Gallagher
City of

Lepide is a perfect fit for our IT Security and Compliance requirements. It helps us cut out a lot of wasted time and money and now we know we can be compliant with industry standards.

Ratings Agnel Dsilva Information Technology Administrator Agnel Dsilva

Complete coverage for your on-premise, cloud, or hybrid environment


Lepide’s Active Directory Auditing software enables you to audit all critical Active Directory changes, including which users can create, manage or delete domain controllers, user and computer accounts, security groups, organizational units, trust relationships, administrative workstations and more.

Lepide also enables you to audit changes to configurations and permissions that could result in users with excessive privileges. This is critical when implementing a policy of least privilege.

Lepide’s Active Directory auditing tool enables you to generate a list of users with privileged access, such as members of administrative groups, and shows you how these users gained that level of access. If any new privileged users are created, Lepide will send a real time alert and enable you to reverse the change if required. Lepide can also generate real time or threshold-based alerts for whenever changes are made by privileged users to your sensitive data or infrastructure.
Absolutely, Lepide can generate a list of the privileged security groups in your Active Directory and show you which users are members of these groups. You can delve into the members of these groups to determine what changes they are making to sensitive data. You can also audit historic permission changes and compare between two dates to see how your Active Directory security groups have changed.
Our AD auditing tool gives you the ability to accurately determine effective permissions in Active Directory and improve the way you govern access to your data. This ability is all you need to effectively deny attackers the access they need to use the DCSync feature of Mimikatz and other similar attack tools. Specifically, you can use Lepide to determine which of your users has the Get Replication Changes All extended right effectively granted on the domain root object.
Absolutely, Group Policy is a vital part of our Active Directory auditing tool. Any changes to Group Policy settings could put your sensitive data at risk. Lepide’s Active Directory auditing software has in-built group policy reporting and auditing tools to help you audit critical changes to Group Policy, including the vital “who, what, when, where” auditing information.
Lepide’s AD auditing tool enables you to roll back Active Directory and Group Policy changes using backup snapshots. Lepide also allows you to recover and restore Active Directory and Group Policy objects from Tombstone or Logically Deleted states.
Ongoing, continuous Active Directory auditing, especially where permissions and configurations changes are concerned, will help you spot a variety of threats to your AD security, including insider threats, ransomware, privilege abuse and more. Lepide’s Active Directory auditing software comes with in-built security threat models to help simplify threat detection and response.
Building active directory audit reports can be a time consuming and difficult process. Lepide Active Directory audit tool comes with hundreds of in-built reports to simplify your active directory audits, including Active Directory modification reports, Active Directory state reports, Active Directory Organizational Units reports, User reports, Group reports, User Password Expiration Reminders and more.