Jump to content
Directory Services are critical—every user authenticates to Active Directory or LDAP, and nearly every ACL, mailbox, and SharePoint site, and more and more applications refers to users and groups in these directories for access control, yet it is almost impossible to determine where they are used without manual inspection of every resource. Organizations have about as many groups as they do users, and no track or attribute changes, no way to analyze how and where they are used, and when memberships have gone stale.
If you manage directory services such as Microsoft AD, LDAP, or NIS, then you know that changes are difficult to audit and analyze, and these complex systems can easily fall out of sync with the businesses they support. As users finish projects, change groups, or even leave the organization, directory services may not be updated to reflect these changes, so groups often have more users than necessary, creating overly permissive access.
The Varonis Metadata Framework™ addresses these challenges by providing a complete representation of the domain hierarchy in the familiar DatAdvantage interface, right alongside other monitored infrastructure components, like Windows Servers, NAS devices, SharePoint sites, and Exchange mailboxes and public folders,* as well as an audit trail of all Active Directory activity, including changes to OU's groups, group policy, and logon/logoff events.
Data protection is necessary to safeguard an organization's customers, employees, business partners, and investors. It is fundamental in securing an organization's intellectual property and competitive edge, and for maintaining the organizational trust required for it to properly function. Ongoing, scalable data protection and management require technology designed to handle an ever-increasing volume and complexity—a metadata framework.
The Varonis Metadata Framework™ non-intrusively collects this critical metadata, generates metadata where existing metadata is lacking (e.g. its file system filters and content inspection technologies), pre-processes it, normalizes it, analyzes it, stores it, and presents it to IT administrators in an interactive, dynamic interface. Once data owners are identified, they are empowered to make informed authorization and permissions maintenance decisions through a configurable web-based interface—that are then executed—with no IT overhead or manual backend processes.
Our 30-Day Free Trial provides a full audit of your file system or your SharePoint environment. Audit permissions, auditing access, usage statistics, recommendations, impact analysis, and identification of business owners.
You can instantly conduct a permissions audit: File and folder access permissions and how those map to specific users and groups. You can even generate reports.
Varonis® DatAdvantage® will begin to show you which users are accessing the data, and how.
Varonis® DatAdvantage® will actually make highly reliable recommendations about how to limit access to files and folders to just those users who need it for their jobs.
Get the Varonis View. Sign up for the 30-Day Free Trial.