|
The Secure Vantage Security Management solution delivers unprecedented real-time alerting and health monitoring of all Windows security events, group policy settings & violations across your entire Windows Enterprise. The Security Management solution leverages your existing System Center Operations Manager (SCOM) environment and provides the foundation for implementing Windows security alerting, controls and operational processes within your organization.
Within minutes of installing our solution, your SCOM environment will transform into a security management system with immediate visibility into existing security violations, expert knowledge guidance for managing those risks plus extensive operational views and reporting. Optimize your existing investment in System Center now and discover how easy Security Management can be for Windows Systems.
Key Technology Features
- Over 400 Windows security alerting rules
- Advanced Group Policy change tracking
- Built-in Expert Knowledge Guidance and Articles
- Resultant Set of Policy (RSoP) reporting and views
- Security MP Templates a.k.a. Auditing Wizards
- Support for Windows Server 2000, 2003 and 2008
Solution Resources
Solution Features
The Group Policy Auditor (GPA) enables detailed GPO setting discovery and auditing that provides reporting metrics on policy configuration, baseline exceptions, compliance alerting and historical change tracking of Windows Server security policies. This solution improves visibility into potential configuration issues and audit assessments by extending your auditing trail of GPOs to identify both Users making changes and the security settings values being changed. For more information click here.
The Windows Security Auditor (WSA) provides comprehensive alerting and operational services for auditing Windows Server security events. With pre-defined alerting, collection rules, operational views, remediation tasks and reporting this solution compliments any Windows environment. Implement Windows security event auditing ‘Best Practices’ out-of-box and leverage the extensive monitoring template library to customize the solution for your specific needs. For more information click here.
The Security Management Packs include the following audit reports that run against both the Operations Manager online database and data warehouse.
Group Policy Reports
- Group Policy Change Audit Report
- Resultant Set of Policy Details Report
Small Business Reporting (non ACS security event reports)
- Account Management
- Audit Integrity
- Domain Policy Change Details
- Domain Trusts Changes
- Group Member Changes
- Policy Changes
- User Account Added and Deleted
- User Accounts Enabled and Disabled
- User Account Password Resets
The Security Dashboard Accelerator provides a high-level dashboard for the Security Management packs. To learn more about this accelerator please click here.
The Security MP Templates provide easy to use auditing wizards that help users quickly setup custom auditing and alerting. The Templates dynamically create a customer alert rule, health monitor and view based on the audit scenario selected.
Frequently Asked Questions
 Do the Security Management packs require ACS?
The Security Management packs have no dependency on ACS and rely entirely on the SCOM agent infrastructure. We do provide MP Templates that use the ACS event channel for high event volume scenario's and customers leveraging ACS.
What alerting is enabled out-of-box?
The Security Management packs have about 50 audit scenario's enabled out-of-box that are considered best practices for most environments. The Quick Start Guide has a general listing of all 400+ rules and their enabled status.
If you have any questions, comments, need support or would like to place an order please contact us for assistance.
|
|
|
|