Netwrix Auditor for Exchange
Overview
Netwrix Auditor for Exchange simplifies Exchange auditing across on-premises and cloud-based environments and provides actionable audit data, all in one place. See who has access to what, monitor non-owner mailbox access events, and track Exchange configuration and permission changes, so you can prevent data breaches, prove IT compliance and ensure ongoing availability of email services.
Watch the Video
Features
Visibility into access permissions
Empowers you to quickly find out which users and groups have access to what in your Exchange Online and see exactly how permissions were granted, so you can create a more manageable and secure cloud environment.
Comprehensive change auditing
Simplifies Microsoft Exchange auditing by delivering detailed, actionable information about each change, including when it occurred, who made it, exactly what was changed, and the current and previous values.
Non-owner mailbox access monitoring
Reports to IT staff and mailbox owners about non-owner mailbox access events. You can see who accessed which mailbox, when and from which IP address the access occurred, and what messages or other items were viewed, edited or deleted.
Near real-time alerts on critical activity
Notifies you about suspicious activity, such as modifications of access rights to sensitive data, critical configuration changes or unauthorised actions performed on a CEO’s mailbox by delegates.
Easy-to-read audit reports and overview dashboards
Supplies audit data to anyone who needs it in a human-readable format. Predefined reports and dashboards are easy to customize using built-in filtering and sorting. Export and subscription options simplify Exchange reporting routines.
Streamlined compliance reporting
Makes it easy to prove you have proper Exchange security controls in place by providing out-of-the-box reports mapped to specific regulatory compliance standards, including PCI DSS, HIPAA, SOX, GLBA, FISMA/NIST, CJIS and GDPR.
Interactive Google-like search
Enables you to quickly sort through Exchange Online and Exchange Server audit data and fine-tune your search criteria until you find the information you need. Easily save your searches as custom reports that you can run on demand or have delivered to you on schedule.
User Behavior and Blind Spot Analysis reports
Simplifies Exchange auditing by detecting hidden threats that might endanger the security of or stability of email operations, such as suspicious activity outside of business hours or unusual non-owner mailbox logon attempts.
Automated incident response
Enables you to automate response to common and anticipated incidents, like password resets or mailbox lockouts, by embedding scripts in alerts. Ensure prompt and accurate response while staying focused on your other important tasks.
Behavior anomaly discovery
Identifies high-risk users by aggregating their anomalous activity across your on-premises and cloud-based Exchange, as well as other critical systems like Active Directory, SharePoint and SharePoint Online. Spot identity theft, privilege escalation and other threat.
User profile information
Speeds investigations and helps you ensure individual accountability by presenting key details about user accounts involved in an incident, all in a single place.
Non-intrusive architecture
Audits your on-premises, cloud-based and hybrid Exchange environments without using agents, so the auditing process never degrades system performance or causes downtime.
