Jump to content

Solution for Directory Services

Directory Services are critical—every user authenticates to Active Directory or LDAP, and nearly every ACL, mailbox, and SharePoint site, and more and more applications refers to users and groups in these directories for access control, yet it is almost impossible to determine where they are used without manual inspection of every resource. Organizations have about as many groups as they do users, and no track or attribute changes, no way to analyze how and where they are used, and when memberships have gone stale.

Overview

The Challenge

If you manage directory services such as Microsoft AD, LDAP, or NIS, then you know that changes are difficult to audit and analyze, and these complex systems can easily fall out of sync with the businesses they support. As users finish projects, change groups, or even leave the organization, directory services may not be updated to reflect these changes, so groups often have more users than necessary, creating overly permissive access.

The Varonis Solution

The Varonis Metadata Framework addresses these challenges by providing a complete representation of the domain hierarchy in the familiar DatAdvantage interface, right alongside other monitored infrastructure components, like Windows Servers, NAS devices, SharePoint sites, and Exchange mailboxes and public folders,* as well as an audit trail of all Active Directory activity, including changes to OU's groups, group policy, and logon/logoff events.

Varonis DatAdvantage for Directory Services Presents:

  • A visual representation of the entire forest/domain hierarchy
  • A sortable, searchable audit trail of all Active Directory logon, logoff, and change events
  • Recommendations on unused groups and group memberships*
  • What-if/change modeling capabilities for groups and ACL's

Metadata Streams

Four types of metadata are critical for data governance

  • User and Group Information - from Active Directory, LDAP, NIS, SharePoint, etc.
  • Permissions Information - knowing who can access what data in which containers
  • Access Activity - knowing which users do access what data, when and what they've done
  • Sensitive Content Indicators - knowing which files contain items of sensitivity and importance, and where they reside

Varonis Metadata Image

Why Varonis

Data protection is necessary to safeguard an organization's customers, employees, business partners, and investors. It is fundamental in securing an organization's intellectual property and competitive edge, and for maintaining the organizational trust required for it to properly function. Ongoing, scalable data protection and management require technology designed to handle an ever-increasing volume and complexity—a metadata framework.

The Varonis Metadata Framework non-intrusively collects this critical metadata, generates metadata where existing metadata is lacking (e.g. its file system filters and content inspection technologies), pre-processes it, normalizes it, analyzes it, stores it, and presents it to IT administrators in an interactive, dynamic interface. Once data owners are identified, they are empowered to make informed authorization and permissions maintenance decisions through a configurable web-based interface—that are then executed—with no IT overhead or manual backend processes.

Resources

30-Day Trial

Our 30-Day Free Trial provides a full audit of your file system or your SharePoint environment. Audit permissions, auditing access, usage statistics, recommendations, impact analysis, and identification of business owners.

Within hours of installation

You can instantly conduct a permissions audit: File and folder access permissions and how those map to specific users and groups. You can even generate reports.

Within a day of installation

Varonis® DatAdvantage® will begin to show you which users are accessing the data, and how.

Within 3 weeks of installation

Varonis® DatAdvantage® will actually make highly reliable recommendations about how to limit access to files and folders to just those users who need it for their jobs.

Get the Varonis View. Sign up for the 30-Day Free Trial.

67% trust businesses with personal data - http://t.co/oK0LRr0ihu #privacy #datagovernance #hacking