Monitor all Active Directory and Group Policy changes

Choose from 70+ predefined reports that detail changes to group membership, accounts, groups, organizational units, and all other Active Directory and Group Policy objects.
"Netwrix Auditor for Active Directory has enabled me to provide accurate visibility regarding what changed when. I really like the low system overhead of the Netwrix product and how easy it is to get up and running."

Kathryn J. Roxby, IT Systems Administrator Sr.,

Technologies Division

Investigate actions that seem suspicious

Suppose a report or alert reveals that a user who isn’t even a member of your IT team deleted an organizational unit or created a new password policy. With Interactive Search, you can quickly identify who gave excessive rights to that user and what else he or she did in your environment.
Get actionable data instead of reviewing active directory audit logs

Receive alerts about critical events

Set up alerts for the most critical events. For example, you can choose to be notified whenever someone is added to the Enterprise Admins or Domain Admins group.
Set up Active Directory alerts for critical changes

Compare current and past configurations

Make sure group membership, password policies and other critical objects do not change without your approval. State-in-Time™ reports enable you to quickly compare your current Active Directory and Group Policy configurations to snapshots from any point in the past.

Detect unauthorized access to your domain

Get detailed information about every logon event, both successful and failed, to easily pinpoint intrusion attempts, even if those do not cause an account lockout.
Detect unauthorized access to your domain

Quickly roll back unwanted changes

Turn back the clock on Active Directory changes that are caused by human error, indicate a security threat or put your organization out of compliance — without any downtime or having to restore from backup.
Recover Active Directory with ease and roll-back any unwanted change

Prepare compliance reports faster

Spend less time preparing for PCI DSS, HIPAA, SOX, FISMA/NIST800-53, ISO/IEC 27001 and other audits with out-of-the-box Active Directory reports mapped to each compliance standard.
Streamline Active Directory compliance reporting

Store audit trails for later review and periodic checks by auditors

The two-tiered (file-based + SQL database) AuditArchive™ storage keeps Active Directory audit data archived for more than 10 years, enabling easy review, security investigations and periodic checks by auditors.
Store audit trails for later review and periodic checks by auditors

Deploy Netwrix Auditor wherever you need it

Download a free 20-day trial of Netwrix Auditor and deploy it on Microsoft Windows Server.
Download our virtual appliance and start using Netwrix Auditor without having to provision any hardware or software.
Deploy Netwrix Auditor from the Microsoft Azure or AWS marketplaces and get up and running with auditing in just minutes.

Subscribe yourself and other employees to Active Directory audit reports or provide stakeholders with full access to audit data

Dealing with constant audit report requests from colleagues across the organization? Have the reports they need delivered automatically by email on the schedule you specify, or provide them with full access to Active Directory audit data by installing the Netwrix Auditor client on their computers.
"In a way Netwrix Netwrix Auditor is doing us a big favor, as it has highlighted some Active Directory issues of which we were previously unaware. Let´s face it, who has the time to sit and review the Event Logs on all of their DCs?"

Christopher Faithfull-Lisle, IT Product Manager,