PLEASANTON, Calif. - September 20, 2017 - ManageEngine, the real-time IT management company, today announced a new version of ADAudit Plus, its integrated Active Directory, workstation, file server and member server auditing software. The new version is capable of reporting on federated authentication requests administered by Active Directory Federation Services (ADFS). Enterprises that use ADFS to authenticate employee access to cloud-hosted apps or partner user access to shared applications will be able to establish and demonstrate access accountability using this new reporting feature.
Click to tweet this news.
When businesses implement ADFS to establish single sign-on access to IT resources across corporate boundaries, they often face a trade-off between seamless user experience and administrative overhead. Furthermore, the standard implementation of ADFS, which offers rich security features, is quite contradictorily found lacking in security event (such as user activity) reporting capabilities. Administrators must rely on heavy scripting to glean information about user activity, which is haphazardly logged in the federation servers. Preparing audit-ready reports from these federation server logs only adds to the complexity of auditing user activity. The newly added ADFS auditing in ADAudit Plus addresses these issues.
Available as an add-on to ADAudit Plus, the new reporting feature records and scrutinizes every authentication request handled by an account partner federation server. For successful logons, the report captures the essential data, including the IP address from which a logon request was initiated, the accessed app (such as Office 365) and the claims issued by the federation server. Logon failures are reported as well, pinpointing the reason the authentication failed, which enables administrators to quickly remediate the underlying issue. This piece of information also helps administrators to quickly spot and negate any denial-of-service attack. In addition, administrators can configure ADAudit Plus to automatically forward ADFS audit reports to other SIEM tools.
"In spite of the widespread adoption of ADFS in today's cloud-driven IT environment, a tool that can comprehensively audit the federation servers is surprisingly unavailable," said Balasubramanian Palani, product manager at ManageEngine. "As a result, businesses are needlessly spending a substantial portion of their IT management time on ADFS auditing and reporting. Our goal is to reduce that burden."
ManageEngine ADAudit Plus with Active Directory Federation Services auditing is available for immediate download. A fully functional, 30-day, free trial of ADAudit Plus is available at www.manageengine.com/products/active-directory-audit/download.html. Pricing starts at $495.
ADAudit Plus is integrated Active Directory, workstation, file server and member server change reporting software. With over 200 event-specific reports and real-time email alerts, ADAudit Plus helps meet the most needed security and compliance demands of your organization. For more information on ADAudit Plus, visit www.manageengine.com/active-directory-audit.
ManageEngine is bringing IT together for IT teams that need to deliver real-time services and support. Worldwide, established and emerging enterprises - including more than 60 percent of the Fortune 500 - rely on our real-time IT management tools to ensure tight business-IT alignment and optimal performance of their IT infrastructure, including networks, servers, applications, desktops and more. ManageEngine is a division of Zoho Corporation with offices worldwide, including the United States, India, Singapore, Japan and China. For more information, please visit buzz.manageengine.com/; follow the company blog at blogs.manageengine.com/ and on LinkedIn at www.linkedin.com/company/manageengine-, Facebook at www.facebook.com/ManageEngine and Twitter @ManageEngine.