File Server Auditing
Data is key asset for many businesses. Ensuring you have adequate auditing and monitoring tools in place is more important than ever before. We believe all organisations should instantly be able to see ‘who, what, where and when’ files and folders are created, accessed, modified, COPIED or deleted at the click of a button. We also think it’s essential that organisations are easily able to track and compare permissions across their data. This solution addresses the challenges of the rise of the insider-threat and the reporting requirements associated with common regulatory compliance mandates. We give IT the power to see more, faster. This solution is specifically designed to work on Windows File Server and NetApp Filers. This solution is available standalone or as a part our comprehensive LepideAuditor.
Get a greater understanding of changes in your IT environment
Our graphical dashboard will enable you to easily track changes occurring across the whole of your File Server environment. It provides you with an easy-to-understand overview of the total number of changes made to File Server; broken down per administrator, source and trend. This should help you not only understand the causes of a single change, but help you spot overall anomalies in events. The performance of your File Server is also tracked and reported on to help you decrease downtime. The LiveFeed shows you all File Server changes made as they are happening so that you can react to them quicker.
Granular reports to help audit File Server changes
LepideAuditor displays a single log for a single change that gives you the answers to the “who, what, when and where” auditing questions. This data is collected and presented through predefined audit reports aimed at helping you solve all manner of security, compliance and IT operations challenges. Every change made is displayed with before and after values to provide you with helpful context. You can customize these reports with auditing functions and create dedicated reports to track a specific file, folder, user or operation. Reports are delivered via email at user-defined intervals through email or by saving at a shared location in either CSV, MHT or PDF formats. These File Server audit reports can be shared via a secure web console.
Receive alerts on critical File Server changes
The earlier you can react to File Server changes, the easier it is to mitigate the damage that can occur. To do this, LepideAuditor offers real time alerts based on a single event or based on threshold conditions that have been defined by the user. For example, we can set an alert to be sent to the intended recipients if an event occurs a certain number of times over a defined period of time. This kind of alerting enables you to spot trends in changes that may be indicative of unauthorized or inappropriate activity.
Audit File Server changes on the go
LepideAuditor comes with a free mobile app that has been specifically designed to help you track File Server changes on the go. It sends push-notifications for file or folder deleted, file or folder created, creation failed, access attempts made to critical files and folders, permission modifications and much more. You can get these notifications either in real-time or whenever they reach a threshold limit. Read more
Meet strict compliance mandates
A common driver for installing a solution such as LepideAuditor is regulatory compliance. Our solution addresses the ever increasing demand to prove to auditors that adequate steps are being taken to ensure data is being responsibly monitored. It provides a wide range of detailed reports that directly map to the common requirements of compliance standards; such as PCI, SOX, HIPAA, GLBA, FISMA and GDPR. Read more
Audit NetApp Filers
Through our integration with the Fpolicy framework and the assigned file policy we’re able to capture events to audit and monitor file and folder activity on your NetApp through CIFS. We treat NetApp Filers the same as we would any traditional Windows File Server auditing all
changes to files and folders, share, permissions, and more.
Track file and folder created, modified, deleted, moved, renamed and more
Our file server auditor is a simple way to keep track of all changes as they happen. The predefined audit reports contain details regarding all attempts of file or folder creation, deletion, copy, move, rename, and other modifications. We also detail the time, drive, folder, file name, process and event. You can track what has happened to a file or folder since its creation, see who has accessed or modified it, and ultimately who has deleted it.
Analyze the current effective permissions of shared files/folders
Current Permission analysis of file servers shows the effective permissions applied on the Shared Folders. Our solution compares the applied NTFS with the Share Permissions to analyze the currently effective permission on a selected file or folder. It also displays the scope of the applied permission by showing the folder level where permission inheritance gets broken and whether the effective permission is direct, indirect or inherited. Reports can be filtered, sorted, saved and investigated for all 13 possible permissions.
Analyze historical permission changes of your files/folders
Our File Server change auditing solution analyzes Historical File Server permissions for Windows File System. You can view the list of all historical permissions for a selected file and folder. The administrator can also compare the permissions for the selected file or folder between two specified time intervals. You can save separate reports for both “Permission History” and “Compare Permission” in PDF, MHT or CSV formats on the disk. It also displays the
scope of the permission changes.
Keep track of file and folder permission changes
Privilege management is essential in the modern business. It’s vital you know when permissions are being changed, who’s changing them, what has been changed and from where the change was made. Using LepideAuditor for File Servers will allow you to view a specific file or folder and instantly see the permission changes. It provides real-time alerts with advanced filtration and a threshold limit to keep you up to date on every critical permission change.
Track who accessed your files and folders.
All access attempts made to files and folders are audited by Lepide File Server Auditor. The solution creates dedicated, in-depth auditing reports for different access types; such as read successful, read failed, creation failed and more. You can also configure the solution to send real-time alerts for these access attempts.
Dedicated Tracking for Shared Files and Folders
With our File Server auditing solution, you can audit all changes to shared files and folders including their permission changes. The dedicated reports help keep you aware of every change being made. You can customize these reports with auditing functions and create dedicated reports to track specific files, folders, users or permissions. We let you determine the effective permissions applied to the shared files and folders with an inbuilt “Current Permission Report”. This report compares the NTFS with the Share Permissions to evaluate the current effective permissions on a selected shared file or folder.
See the original value before the change was made
Naturally – you want to know if any of your files have been modified but the real value comes from the context. We think it’s important to show you what it was changed from. The before values allow you to truly understand the purpose of the event and enable IT teams to identify issues faster.
We’re one of a small number of providers who can accurately show file copy events
While it’s fair to say we’re not the only provider of file auditing and monitoring solutions on the market we’re actually one of the very few that can accurately show you when a file has been copied. We think this is pretty important when trying to keep track of your critical data. Especially given that copied files are the main source of data leakage.
We let you use wildcards to audit potentially sensitive data.
Our intelligent filters let you use “*” (asterisk) and “?” (question mark) to drill-down the audit reports and focus on the changes made to files and folders containing these characters in names, paths, usernames or other audit details. A common use case may be to search for all files where the filename contains the word ‘confidential’. You can then easily save this search in a PDF, CSV or MHT file. You can also use these wildcards to send the real-time alerts for changes made to for sensitive data.
Detect suspicious changes and prepare quick incident response.
LepideAuditor for File Server lets you prepare a quick Incident Response by allowing you to run your own custom script with the alerting of selected critical changes. You can perform automated tasks defined in your script; including disable a user account, delete a user account, revoke the permission granted to a user or shut down a computer. For an example, you can set the solution to delete a user who has deleted multiple files. Yes, you can set to get notifications for both critical changes and script execution.
Improve Data Access Governance
LepideAuditor enables you to get insight into which files and folders that your users and groups have access to and manage the levels of permissions applied to them. You can also generate a list of open shares in your File Server, including the files and folders residing within them, and see by what means they were ‘opened’.
LepideAuditor is simple to install and setup and is an easy-to-use solution for auditing your IT environment.
LepideAuditor takes the strain out of change auditing and regulatory compliance with one of the most comprehensive solutions on the market.
IT Security Guru
It’s rare to find a solution which covers a such a wide range of auditing services, but ‘LepideAuditor’ is one of those rare exceptions.
Active Directory Lead
LepideAuditor is one of the most simple to use and feature-packed security suite for Microsoft-based environments. If you fear security breach, this is one of the most essential security perimeters.
LepideAuditor is an excellent audit solution. It gives IT teams complete information about what’s happening in the IT systems, the health of their servers and backup history.
The LepideAuditor is an invaluable toolset for any System Admin to audit Active Directory, Group Policy and Exchange server changes.
I really enjoyed the way LepideAuditor performs to audit the changes made to Active Directory and Group Policy Objects. I will certainly recommend it to anyone who is looking for an easy-to-use third party auditor.
LepideAuditor is highly recommended as it not only meets all requirements for Active Directory and Group Policy change auditing but also it is easy and friendly to use.
Roberto Di Lello
LepideAuditor is an excellent auditing solution. Some key features of the solution are compliance reports, health monitoring, alerts/notifications and the backup/restore functionality.
LepideAuditor honored as Gold winner in the 12th Annual 2016 Info Security PG’s Global Excellence Awards® in ‘Auditing’
LepideAuditor is a solid product that will likely do a good job for anyone who wants to know what administrative actions are being taken in their organization.
LepideAuditor received a gold certification in data loss prevention.
❝ LepideAuditor has brilliant search capabilities and was easy to use from the perspective of a non-technical end user – highly recommend it.❞
❝ LepideAuditor provided us with complete visibility over what was happening in our IT environment in a simple, cost-effective and scalable way.❞
❝ We're very pleased with how much more insight LepideAuditor gave us and impressed with the attentive customer service they provided.❞
❝ LepideAuditor takes the strain out of change auditing and regulatory compliance with one of the most comprehensive solutions on the market. ❞