The InTrust Plug-in for Exchange provides real-time, detailed tracking of all user activity, non-owner access, and auditing of changes to configuration and permissions to Exchange mailboxes and servers. With InTrust, this Plug-in for Exchange provides efficient collection and storage of audit data and enables organizations to effectively react to, and even prevent, policy violations in their Exchange configurations.
- Audit Permissions Changes: The InTrust Plug-in for Exchange works in the framework of the full InTrust application to collect all information related to major changes including who made the change, where the change occurred and the before and after values. This critical information allows an administrator to troubleshoot Exchange permission problems and reverse any changes if necessary. It also lets organizations trace changes to Exchange security and policy settings to determine compliance breaches.
- Real-Time Response: The InTrust Plug-in for Exchange responds in real time to the most critical events and changes to Exchange. Administrators are notified immediately by e-mail when possible violations and changes occur. In addition, the tool also takes immediate, automatic action in response to suspicious or potentially harmful events. These actions can include disabling a violator’s account or reversing the changes.
- Audit Non-Owner Activity: The InTrust Plug-in for Exchange shows you when administrators and users have gained access to another user’s mailbox. It also delivers detailed information about access activity, such as e-mails read, deleted, copied, moved or forwarded, as well as permission changes made to folders.
- Audit User Activity: The InTrust Plug-in for Exchange collects and correlates all unusual user and suspicious administrator activity. For example, it reports on permission changes made to a mailbox within Active Directory or at the local Outlook client as well as identifies anyone using Send-As privileges.
- Integration with MOM 2005: The InTrust Plug-in for Exchange enhances the monitoring and diagnostic value of Microsoft Operations Manager (MOM) 2005 by providing valuable information about critical changes to Exchange configurations. This ensures that important configuration changes appear in the MOM Operator Console with all the details behind the changes displayed, including who made the changes and the before and after values.
Read this white paper to learn how the Quest InTrust Plug-in for Exchange helps organizations monitor and respond to instances of non-owner mailbox access and erroneous administrative changes.
Read the White PaperIn this webcast, we explore how Reporter and Configuration Baselining will help you keep your Windows environment in line with Microsoft Best practices and other standards.
Watch the Archived WebcastThe Quest Knowledge Portal provides a single, unified reporting platform for a variety of Quest products. The Portal facilitates scheduled and ad hoc reporting, enabling complete business views into IT at both a summary and a granular level.
More about Quest Knowledge Portal