Record and Replay All Windows and Unix User Sessions Like a security camera on your servers

Similar documents
Edit system files. Delete file. ObserveIT Highlights. Change OS settings. Change password. See exactly what users are doing!

InspecTView Highlights

ObserveIT User Activity Monitoring software meets the complex compliance and security challenges related to user activity auditing.

HOW OBSERVEIT ADDRESSES KEY INDIA DOT REMOTE ACCESS SECURITY REQUIREMENTS

USER ACTIVITY MONITORING FOR IBM SECURITY PRIVILEGED IDENTITY MANAGER

How To Use A Logbook For A Business

HOW OBSERVEIT ADDRESSES KEY HONG KONG IT SECURITY GUIDELINES

OBSERVEIT DEPLOYMENT SIZING GUIDE

Log Blindspots: A review of cases where System Logs are insufficient

HOW OBSERVEIT ADDRESSES 7 OF THE SANS 20 CRITICAL SECURITY CONTROLS

OBSERVEIT TECHNICAL INFORMATION FOR SALES TEAM. Created by Alex Ellis Pre-Sales Engineer - 2/26/14

Generate Reports About User Actions on Windows Servers

Adding ObserveIT video audit logs to your SIEM

administrator are Console Users that can log on to the Web Management console and

ObserveIT User Activity Monitoring

Outgoing VDI Gateways:

ObserveIT Technology Overview

Remote Vendor Monitoring

LifeSize Control Installation Guide

visionapp Remote Desktop 2010 (vrd 2010)

Mobile Admin Architecture

App Orchestration 2.5

OBSERVEIT 6.0 WHAT S NEW

PCI Compliance Auditing and Forensics with Tectia Guardian

ObserveIT Technology Overview

Use Enterprise SSO as the Credential Server for Protected Sites

Preinstallation Requirements Guide

Security Correlation Server Quick Installation Guide

Installation and User Guide

You don t know what you don t know!

What is new in BalaBit Shell Control Box 4 LTS

Requirements Collax Security Gateway Collax Business Server or Collax Platform Server including Collax SSL VPN module

OBSERVEIT TECHNICAL SOLUTION OVERVIEW

Citrix EdgeSight Administrator s Guide. Citrix EdgeSight for Endpoints 5.3 Citrix EdgeSight for XenApp 5.3

Goverlan Remote Control

Remote Workers are Under Control

Security White Paper The Goverlan Solution

Remote Administration

Remote Desktop In OpenSUSE 10.3

VPNSCAN: Extending the Audit and Compliance Perimeter. Rob VandenBrink

Communication Ports Used by Citrix Technologies. April 2011 Version 1.5

Communication ports used by Citrix Technologies. July 2011 Version 1.5

Active Directory Manager Pro Quick start Guide

STEALTHbits Technologies, Inc. StealthAUDIT v5.1 System Requirements and Installation Notes

SA Citrix Virtual Desktop Infrastructure (VDI) Configuration Guide

Comprehensive Monitoring of VMware vsphere ESX & ESXi Environments

Citrix XenApp-7.6 Administration Training. Course

Using Microsoft Windows Authentication for Microsoft SQL Server Connections in Data Archive

GRAVITYZONE HERE. Deployment Guide VLE Environment

HRC Advanced Citrix Troubleshooting Guide. Remove all Citrix Instances from the Registry

Interworks. Interworks Cloud Platform Installation Guide

SiteRemote 4 Cloud. Remote Monitoring. SaaS - Kiosk Remote Monitoring & Management Software

Administration Guide NetIQ Privileged Account Manager 3.0.1

What s New in Centrify DirectAudit 2.0

Desktop Surveillance Help

2X ApplicationServer & LoadBalancer Manual

Enterprise Manager. Version 6.2. Installation Guide

2X ApplicationServer & LoadBalancer & VirtualDesktopServer Manual

ISO27001 compliance and Privileged Access Monitoring

SA Citrix Virtual Desktop Infrastructure (VDI) Configuration Guide

4D Deployment Options for Wide Area Networks

Advantages of Server-side Database Auditing. By SoftTree Technologies, Inc.

Quick Start Guide for Parallels Virtuozzo

VMware vcenter Log Insight Getting Started Guide

Citrix Online, div. of Citrix Systems Inc. GoToAssist TM. Product Category: Knowledge Management/eSupport Validation Date: 2/22/2005

2X ApplicationServer & LoadBalancer Manual

ISO COMPLIANCE WITH OBSERVEIT

Connection Broker Managing User Connections to Workstations, Blades, VDI, and more. Security Review

MEGA Web Application Architecture Overview MEGA 2009 SP4

XyLoc Security Server w/ AD Integration (XSS-AD 5.x.x) Administrator's Guide

Administrator Guide. v 11

Installation and Deployment

Connection Broker Managing User Connections to Workstations and Blades, OpenStack Clouds, VDI, and more. Security Review

Scan to SMB(PC) Set up Guide

SortSite Enterprise Deployment Guide v1.1.13

White Paper. Fabasoft Folio Thin Client Support. Fabasoft Folio 2015 Update Rollup 2

Application Discovery Manager User s Guide vcenter Application Discovery Manager 6.2.1

Security Guide. BlackBerry Enterprise Service 12. for ios, Android, and Windows Phone. Version 12.0

Symplified I: Windows User Identity. Matthew McNew and Lex Hubbard

Contents About the Contract Management Post Installation Administrator's Guide... 5 Viewing and Modifying Contract Management Settings...

Citrix TCP Ports Communication Ports Used By Citrix Technologies. August 2009 Version 1.0

SOA Software API Gateway Appliance 7.1.x Administration Guide

WebsitePanel Installation Guide

Password Reset PRO. Quick Setup Guide for Single Server or Two-Tier Installation

There are many different ways in which we can connect to a remote machine over the Internet. These include (but are not limited to):

Logi Ad Hoc Reporting Configuration for Load Balancing (Sticky Sessions)

OnCommand Performance Manager 1.1

2X ApplicationServer & LoadBalancer Manual

SysPatrol - Server Security Monitor

Verax Service Desk Installation Guide for UNIX and Windows

Redtail CRM Integration. Users Guide Cities Digital, Inc. All rights reserved. Contents i

Security Correlation Server Quick Installation Guide

McAfee One Time Password

SOA Software: Troubleshooting Guide for Policy Manager for DataPower

FireSIGHT User Agent Configuration Guide

Ulteo Open Virtual Desktop - Protocol Description

Microsoft Dynamics CRM Server 2011 software requirements

Netwrix Auditor for Windows Server

Ekran System Help File

Netwrix Auditor for SQL Server

Transcription:

Record and Replay All Windows and Unix User Sessions Like a security camera on your servers ObserveIT is the only enterprise solution that records both Windows and Unix user sessions, supporting all methods of access, without requiring any architecture changes. Full video playback of every user action Records all remote and console Windows and Unix sessions RDP, ICA, VMWare, SSH, Telnet and more Comprehensive software-based solution for: Monitoring 3rd-party providers Secure Compliance Auditing of all user activity Troubleshooting of root cause of errors

Market Challenges The writing is on the wall... When remote vendors, sysadmins and business users access your network, you need the full picture of what really happened. ObserveIT gives you video playback of user activity, tied directly to your event logs. Even a detailed log entry of file change timestamps is not enough. Did the user Copy/Paste data? Edit XML elements? Change an Excel formula? ObserveIT shows you precisely what was done.

Benefits of ObserveIT Bulletproof legal evidence - Reduce the risk of misaligned client-vendor interests by capturing bulletproof legal evidence of all vendor activity. Video replay can be used during litigation or to eliminate need for legal action. Remote Vendor Auditing Secure Compliance Instant Troubleshooting Increased self-reliance - Video recordings document all vendor activity, allowing you to reduce reliance and dependency. Eliminate the mystery and know what they do. Improve flexibility when ending contracts, adjusting agreements or setting SLA expectations. Improve in-house knowledge - An indexed database of user session recordings becomes a best-practices repository for critical business operations. Overcome poor communications - Reduce the need for verbal descriptions, hand-holding, and email explanations: 30 seconds of video explains more than hours of training, phone calls and emails. Reduce geopolitical risks - Your business is exposed to risk if security or political events prevent off-shore vendors from providing services. Video playback of prior activities provides path for temp/emergency staff to step in mid-stream. Enhance your System Management infrastructure - Tie a precise video replay to every textual log entry in your SIM log management Immediate Compliance for all new apps - Every new app (ex: customized CRM module) is automatically monitored and ready for compliance auditing. No need to modify code / config to achieve log requirements. Desktop Auditing - Monitor all user actions, even if they are only working on their own Desktops, without touching corporate servers.

ObserveIT s Unique Advantage: Video + Metadata places all the intelligence at your fingertips ObserveIT lists every user session Windows Session: Metadata + Video ObserveIT captures Window title, Application name, files opened, URL accessed, UI element selection and text entry Exact video playback Within each session, details of every action taken Unix Session: Metadata + Video ObserveIT captures shell logins, including all command line activity and system calls. (If user types rm*, ObserveIT captures each file name that is deleted.) List of each user command For each command, a detailed list of system calls Exact video playback of command prompt screen

Key Features Record & Replay - Exact video playback of every Windows and Unix session, including mouse movements, UI interaction, text entry and command line. Intelligent Metadata associated with each session - No need to replay hours of video to find what you need. Interactive drill-down - according to user, server, app name, file or resource used, underlying system calls and more - takes you straight to the the right user action replay. Real-time Playback - View session activity on the air while users are still active, or replay historical recordings at any time. Privileged User Identification - Associate usernames with each anonymous administrator login. Add an additional level of system access control for sensitive resources. Complete Coverage - ObserveIT is agnostic to network protocol and client application. Captures Unix and Windows sessions via: SSH, Telnet, RDP, Terminal Services, Citrix, VMware, VNC, PC-Anywhere, Dameware and more. System Monitor Integration - Instant-replay from within network management (SCOM, Unicenter, Tivoli, OpenView, etc.) Real-time alerts on any user action (File access, network share, registry edit, URL access and more) Enterprise Scale Robust Security Architecture - Agent-Server encryption, Digital Signatures, Pervasive User Permissions and System Watchdog mechanism are designed for secure enterprise environments AD Policy, Event-Driven Rules - Flexible rules engine allows for inclusion / exclusion policies according to Active Directory user and user groups. Event rules also can be triggered per application, resource used. Small Footprint - Ultra-efficient data storage: Less than 250GB/year for high-usage, 1000 server enviroment. Minimal Agent CPU utilization: 0% CPU when no console active, 1%-2% CPU, 10 MB RAM during session.

How ObserveIT Works Remote and terminal users access your servers. ObserveIT records every user action. 1 2 3 You can review, audit, search and replay all user sessions. Why Use ObserveIT Remote Vendor Auditing: No more fingerpointing! Know exactly what your 3rd-party vendors are doing on your servers. Secure Compliance: Audit people, not just apps Detailed audit reports provide bulletproof evidence of every access to your corporate servers and databases, delivered automatically. Instant Troubleshooting: Defeat the Oops factor Find the root cause of any config change, using detailed searching and video session playback.

ObserveIT Architecture The ObserveIT Agent is installed on each monitored server. The Agent captures data (screenshot and metadata) for every user action. Metadata includes info on the state of the operating system and the application program being used, which allows ObserveIT to precisely identify what the user is doing. By default, the Agent communicates with the Management Server via HTTP POST (TCP port 80). All content is encrypted. The Agent architecture includes a Watchdog service to prevent it being shut off. The ObserveIT Management Server is an ASP.NET application in IIS that collects all data delivered by the Agents, where it is analyzed and sent to the Database Server to be stored and indexed. The Management Server communicates with the Agents for configuration update. It also can integrate easily with LDAP for user validation, with SIM to link video replay from within textual log file listings, and with Network Management systems to allow for system alerts and updates based on user activity. The ObserveIT Web Console is an ASP.NET application in IIS that serves as the primary interface for accessing information (video replay, reporting, etc.) in ObserveIT. It is also used for configuration and administration tasks. Config data is also stored in the Database Server. The Web Console includes granular policy rules for limiting access to sensitive data. The Database Server is a Microsoft SQL Server database that stores all configuration data, metadata and screenshots captured by ObserveIT Agents. Both the Management Server and Web Console apps connect via standard TCP port 1433. Each of the three server applications can be installed on a single machine, or distributed for performance and security considerations.

Who s Using ObserveIT Manufacturing Financial Telecommunications IT Services Healthcare/Education/Gov t people audit Like a Security Camera on Your Servers. info@observeit-sys.com www.observeit-sys.com

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information