Identify and repair common Active Directory security flaws!
ADsecurity gives administrators the ability to easily document, find, and fix their network’s security issues. And with a simple, client only installation, ADsecurity provides network security management without servers, agents, or other complications.
Scenario:
Well, it happened. You got the email this morning from your boss: "Hey, we need to figure out who has access to our data." "What data?..." you begin typing as you ready yourself for his inevitable response: "All the data. Everything."
That's right, your company is doing a security audit. It's all the rage nowadays. SOX, GDPR, you've heard all the buzz words. And as the lucky network admin, now you've got days to put together a comprehensive list of resources throughout your network, along with who has access to them, and what they can do with the data within. Every computer, every shared folder, every file. Active Directory user objects, contact records, mailboxes. Personal data resides all over the place. Where do you even begin?
ADsecurity highlights security issues, and fixes them!
You know about the principle of least privilege: users should be granted only the rights they need to do their jobs. All employees shouldn't have access to accounting data and your company's personnel data should definitely only be accessible to HR. It's important, but over the years even the most well-kept networks go astray. Users maintain access to project data long after they've moved on from the project. ACLs gets cluttered with invalid objects from long-deleted accounts leading to security leaks as well as decreased performance.
Harness the power of ADsecurity to get your network back into tip-top shape before the big audit. With a few mouse clicks, easily report on all your Active Directory ACLs, file and share ACLs, and even your Exchange mailbox ACLs. Identify common problems like invalid objects on the ACLs or in Owner fields, then fix them automatically with our Analyze & Clean tools. Gain insights into areas of your network with unnecessary permissions, especially where high-risks accounts are granted access to sensitive files. And, once you've used ADsecurity to get everything back in order, run one final report to show off the results to the auditors. You'll feel great, and they're sure to be impressed!
ADsecurity Reports
The hardest part of getting your network security rights in order is figuring out where the problems are in the first place. After all, nobody tells you when they have access rights they shouldn't have. And of course, this information is the first thing auditors want to find out: i.e. who has access to what, and if they really need that access. ADsecurity is loaded with reports to answer this exact question, in just a few mouse clicks.
ADsecurity comes with hundreds of built-in reports, including:
- Delete Rights - show who has the authority to delete AD objects, files or mailboxes
- Group Membership Rights - show who has the authority to modify group memberships
- High-Risk Trustees - goups which contain all or most users
- Inheritance Issues - objects whose inheritance flag has been changed from its default state
- Non-default Security - show all access rights that are not part of the object's default set
- Reset Password Rights - users with the right to change or reset passwords
- Unusual Owners - all objects with unexpected owners (i.e. non-admins)
ADsecurity Tools
Documenting your current security and identifying areas that need improvement is only half of the puzzle. The real power of ADsecurity is its ability to make changes on ACLs throughout your network, eliminating the need to painstakingly address issues one by one. ADsecurity has 2 main tools to accomplish this:
Analyze & Clean
- Detect user names appearing in the ACLs
- Detect user names appearing in the Owner field
- Detect computer names appearing in the ACLs
- Detect computer names appearing in the Owner field
- Detect empty ACLs (i.e. deny access to all users)
- Detect missing ACLs (i.e. open access to all users)
- Detect and repair deleted objects in ACEs
- Detect and repair unknown SIDs in ACEs (i.e. possibly deleted objects)
- Create an Undo file to easily restore ACLs back to their original settings
Search & Replace
- Replace one object on ACLs throughout your network with another object
- Remove all instances of an object appearing on ACLs
- Add an object to ACLs wherever another object appears
- Replace objects in ACLs, Owner fields, or even Share Permissions
- Create an Undo file to easily restore ACLs back to their original settings
Screenshots
The following images show some common applications of ADsecurity. Click the image thumbnails to expand them and read their descriptions.
Licensing and Pricing
Licensing Notes
ADsecurity is licensed per administrator, under a concurrent use model. There are no limits with respect to the identities of the administrators, or the number of objects that can be managed with the software.
Pricing
The prices listed below are for a 1-year subscription, from the date of purchase. Multi-year subscription pricing is available on request. Prices in US Dollars.
| Number of Administrators | Price |
|---|---|
| 1-2 | $275 each |
| 3-4 | $206 each |
| 5-9 | $180 each |
| 10-19 | $140 each |
| 20-49 | $110 each |
| 50-99 | $55 each |
| 100-199 | $40 each |
| 200-499 | $30 each |
| 500+ | $15 each |
Return Policy: 10% fee for all returns after 30 days.
Get a Quote
Need an official quote? Use our Quote Request Form or call us at 1-800-397-5484 to get a quote today. Official price quotes are valid for a period of 30 days.
For more information about ADsecurity licenses or pricing, please contact us at
Documentation
User Manual
Download ADsecurity
For evaluation purposes, we offer a fully-functional 15-day trial of ADsecurity. Fill out the form below to receive your download link. If you have any questions about the software during your trial, please contact us. We'd be happy to give you a hand.
