Aveksa Launches Active Directory Change Monitoring and Governance

WALTHAM, Mass. --(Business Wire)--

Aveksa, Inc., the provider of the industry's most comprehensive Business-Driven Identity and Access Management platform, today announced new functionality that enables enterprises to monitor and validate changes to Microsoft (News - Alert) Active Directory (AD) deployments against access control policies, as well as reconcile changes with authorized and approved change requests.

Since Active Directory continues to serve as the foundation of authoritative user and group information in most organizations, it's critical to monitor AD changes to ensure that they're appropriate, and based on business and technical policies. With nested AD groups, for example, a single change to a group membership can immediately and dramatically alter the entitlements that hundreds or thousands of users have to specific application and data resources. Aveksa's new capabilities enable enterprises to monitor such events in real-time, validating these changes within AD to ensure that they are authorized and pre-approved.

Similar to Aveksa's recently announced Activity Insight Manager for SIEM, the Aveksa AD Change Monitor leverages real-time activity for true closed-loop validation and enforcement of enterprise access control processes. Enterprises can now detect changes in AD to users or groups, and validate whether they have been granted in compliance with corporate access request policies and processes. Unauthorized privileges will be immediately flagged, allowing for rapid follow-up and removal. Capabilities include:

Story continues below ↓

Ability to monitor changes to user profiles and group memberships
Automated validation that detects directory changes are in compliance with access policies
Automated validation that access request and approved processes have been appropriately followed
Workflows for immediate escalation and remediation of unauthorized access rights

Active Directory Change Monitoring and Governance is supported either through integration with key SIEM platforms, such as HP ArcSight (News - Alert), or via a new module, Aveksa AD Change Monitor, which does not require a SIEM platform.

"Aveksa is committed to providing enterprises with Identity and Access Management solutions that are business-driven and enable enterprises to increase the efficiency of their IT security initiatives while reducing overall security risks," said Deepak Taneja, Founder and Chief Technology Officer, Aveksa. "The capabilities we are announcing today leverage Aveksa's innovative Security Integration Fabric and Enterprise Service Bus architecture, providing IT organizations with a dynamic, flexible approach to change event monitoring. By doing so, enterprises can efficiently monitor events taking place in Active Directory to ensure changes comply with corporate access request policies and processes."

For additional information about Aveksa's new Active Directory Change Monitoring solution, please click here.

About Aveksa

Aveksa provides the industry's most comprehensive Business-Driven Identity and Access Management platform. By uniquely integrating Identity and Access Governance, Provisioning and Authentication, Aveksa enables enterprises to manage the complete lifecycle of user access for SaaS (News - Alert) and On-premise applications and data. With Aveksa, IT organizations can reduce Access Management complexity and increase operational efficiency while minimizing risk and ensuring sustainable compliance. Aveksa provides enterprises with the industry's fastest time to value with over 90% of customers reporting live implementations of the company's business-driven Identity & Access Management solutions and over 80% of these customers live with the latest version of the Aveksa platform. For more information, visit www.aveksa.com.