Jump to content

Solution for Domain Consolidation

As organizations grow and change, so must directory services domains in Windows Active Directory, LDAP, NIS, etc. An updated, organized domain structure is easier to manage and uses domain resources more efficiently. Legacy domains provide little organizational value relative to their maintenance and infrastructure requirements, but before an organization can safely decommission or remove a domain its remaining functions must be identified and absorbed.

Overview

The Challenge

Whether you are consolidating or rationalizing multiple domains that have grown organically over time, or adapting to an organizational change due to merger, acquisition, or divestiture, the same questions arise:

  • Which user accounts from the old domains are still active, and what are they being used for?
  • Which groups from the old domains are still being used?
  • Which domain groups are empty or unused?
  • To which folders, directories and SharePoint sites do legacy groups provide access?
  • How do we make sure that the new, consolidated domain doesn't expose data?
  • How do we efficiently manage and protect data once we've consolidated our domains?

The Varonis Solution

The Varonis Data Governance Suite provides a comprehensive, automated solution to answer these questions, providing a framework to identify the legacy users and groups in your directory services that are present in access control lists (ACLs) on file systems, SharePoint, and Exchange Public folders, and determine whether they are actually being used to access data, identify inactive users, and empty security groups.

Metadata Streams

Four types of metadata are critical for data governance

  • User and Group Information - from Active Directory, LDAP, NIS, SharePoint, etc.
  • Permissions Information - knowing who can access what data in which containers
  • Access Activity - knowing which users do access what data, when and what they've done
  • Sensitive Content Indicators - knowing which files contain items of sensitivity and importance, and where they reside

Varonis Metadata Image

Why Varonis

Data protection is necessary to safeguard an organization's customers, employees, business partners, and investors. It is fundamental in securing an organization's intellectual property and competitive edge, and for maintaining the organizational trust required for it to properly function. Ongoing, scalable data protection and management require technology designed to handle an ever-increasing volume and complexity—a metadata framework.

The Varonis Metadata Framework non-intrusively collects this critical metadata, generates metadata where existing metadata is lacking (e.g. its file system filters and content inspection technologies), pre-processes it, normalizes it, analyzes it, stores it, and presents it to IT administrators in an interactive, dynamic interface. Once data owners are identified, they are empowered to make informed authorization and permissions maintenance decisions through a configurable web-based interface—that are then executed—with no IT overhead or manual backend processes.

Resources

30-Day Trial

Our 30-Day Free Trial provides a full audit of your file system or your SharePoint environment. Audit permissions, auditing access, usage statistics, recommendations, impact analysis, and identification of business owners.

Within hours of installation

You can instantly conduct a permissions audit: File and folder access permissions and how those map to specific users and groups. You can even generate reports.

Within a day of installation

Varonis® DatAdvantage® will begin to show you which users are accessing the data, and how.

Within 3 weeks of installation

Varonis® DatAdvantage® will actually make highly reliable recommendations about how to limit access to files and folders to just those users who need it for their jobs.

Get the Varonis View. Sign up for the 30-Day Free Trial.

Chinese #Hackers Resume Attacks on U.S. Targets - http://t.co/Di3UdvMzD6 #hacking