Netwrix Change Reporter named excellent at doing what it is intended to do!
Netwrix Auditing Platform Architecture
It's crucial for any organization to protect its intellectual property and to prevent leaks of corporate secrets, financials, and other confidential data stored in employees' mailboxes. Auditing when someone accesses another user's mailbox is critical. For example, it's important to detect when someone with excessive permissions looks into CEO's or CFO's e-mails with highly sensitive corporate information.
Non-owner mailbox access auditing and reporting is also a cornerstone of major regulatory compliance regulations (e.g. SOX, GLBA, and HIPAA) and helps to prevent incidents similar to WikiLeaks. Unfortunately, Microsoft Exchange doesn't offer any convenient reporting mechanisms (download Summary: Limitations of Native Tools to learn more).
Netwrix Non-owner Mailbox Access Reporter for Exchange automatically audits administrators and users with excessive rights who gained access to another users' mailboxes. The product reports who accessed what mailboxes, what items inside mailboxes (e.g. e-mails, appointments, tasks etc), and what was done (items viewed, edited, deleted etc). This allows to detect any unauthorized activity from users who may be trying to steal confidential information from sensitive mailboxes. The Mailbox Owner Alerting feature automatically sends e-mail alerts to users who's mailboxes are being accessed by other users.
Features and Benefits:
Need to monitor all changes made to Exchange Server configurations and permissions?
The Exchange Change Reporter is a Microsoft Exchange auditing solution that tracks and reports all changes made to all Exchange Server configurations and permissions. The product generates reports that show changes to configuration settings, creation and deletion of mailboxes, information stores, Exchange servers, connectors, protocol parameters, storage groups and many other types of objects and their permissions. These reports include who, what, when information, and "before" and "after" values for each modification.
We are using the Non-owner Mailbox Access Reporter for Exchange and it is reporting on what we hoped it would. All Netwrix products we are using currently are working well. Thank You! /Sean, NightOwls IT Services/