Netwrix Auditor for

SharePoint

SharePoint Security Software

What data can I get?

How can I use this data?

What data can I get?

Changes in both SharePoint Online and on-premises SharePoint

Keeping track of every change is an extremely cumbersome task if you have to rely on cryptic SharePoint audit logs or switch between multiple Office 365 reports. SharePoint security software from Netwrix provides comprehensive reporting on critical changes to farm configuration settings, groups, permissions and user content, so you can remediate inappropriate changes before they cause security breaches or make your Microsoft SharePoint services unavailable.

Changes in both SharePoint Online and on-premises SharePoint

Data access events for SharePoint content

If you don’t regularly audit who accesses which documents and lists in your on-premises SharePoint and SharePoint Online, someone might read a file that they are not supposed to see and you won’t know about the violation. Netwrix Auditor makes it easy to regularly review data access events so you can reduce the risk of missing improper activity that could lead to a breach

Information on access permissions

SharePoint’s complex system of access permissions makes it a challenge to ensure that your critical documents are secure — especially if you have completed a migration and store SharePoint data both on premises and in the cloud. Netwrix Auditor helps you quickly see through the tangled access permissions structure and make sure that your sensitive data is not overexposed. You’ll be able to clearly see the effective user permissions for all objects in your site collections, how those permissions were granted and whether inheritance is broken.

Information on access permissions

Data classification reports

If your organization is subject to any compliance regulations, it's crucial for you to know what kinds of sensitive information you store, and whether it's properly secured. Netwrix Auditor in conjunction with Netwrix Data Classification identifies the types of sensitive data you store in on-premises SharePoint and SharePoint Online, details its location and shows whether this data is overexposed. Plus, you can quickly check who has access to critical files, libraries or sites, and get the full context around activity with them. Regularly review this information to make sure nothing endangers the security of your sensitive data.

How can I use this data?

Get alerts on critical user activity and threat patterns

Sifting through the audit logs and reviewing SharePoint audit reports from time to time is not enough to shield your sensitive data and prevent privilege abuse. Netwrix Auditor alerts you to critical activity across your on-premises and cloud-based SharePoint environment, such as changes to sites with confidential data and mass data removal, so you can respond before it’s too late.

Get alerts on critical user activity and threat patterns

Improve detection of internal and external threats

If an attack is sophisticated, basic alerting is not enough. While many solutions can alert you when a single event occurred or when a specific threshold has been exceeded, some threats involve a chain of suspicious actions stretching across time. Netwrix Auditor provides a single view of all anomalous activity alerts triggered by an individual across your enterprise and the cumulative risk score, so you can spot malicious insiders and compromised accounts — even if the actors tread carefully.

Spot even subtle indicators of compromise and security blind spots

To harden SharePoint security, it’s crucial to know about even subtle signs of account compromise, such as suspicious surges in data usage. With reports on user behavior and blind spot analysis, you can quickly identify these subtle indicators of threats and investigate them before they cause serious damage.

Spot even subtle indicators of compromise and security blind spots

Speed investigations with effective search

Whenever you need to investigate a security incident, figure out what caused downtime or respond to ad-hoc questions from auditors, Netwrix Auditor’s powerful Interactive Search saves you from having to dig through mountains of cryptic information in native logs. You can quickly find answers to specific questions, such as who removed sensitive files or changed group membership. Plus, you can create custom reports based on your search criteria to easily investigate similar incidents in the future.

Gain a bird’s-eye view of surges in activity

Without a single-pane-of-glass view, it's hard to spot unusual spikes in user activity — you can easily miss an important piece of information while crawling through the logs and tracking changes individually. Netwrix Auditor’s overview dashboard enables you to spot outliers at a glance by identifying the users who are most active, the servers that are most frequently changed and the object types that are most modified.

Gain a bird’s-eye view of surges in activity

Streamline compliance audit preparation with ready-to-use reports

Auditors require you to demonstrate that you do everything possible to secure your data. If you rely solely on native SharePoint auditing tools and Office 365 predefined reports, it can be nearly impossible to provide this proof. Netwrix Auditor makes it easy. It includes out-of-the-box compliance reports tailored to the requirements of PCI DSS, HIPAA, GDPR, SOX, GLBA, FISMA/NIST and other regulatory standards, so you can pass audits with far less time, cost and effort.

What else do I get with Netwrix Auditor
for SharePoint?

Easy integration with your ecosystem

Automated incident response

Cost-effective data storage

Granular access to the platform resources

Easy integration with your ecosystem

To provide a unified audit trail for the broadest range of different data sources, Netwrix Auditor has a RESTful API that allows you to integrate any type of commercial or custom application with the Netwrix Auditor platform. Free, pre-built add-ons are available for most common applications, including SIEM solutions.

Easy integration with your ecosystem

Automated incident response

Responding manually to common incidents can eat up a lot of time and increases the risk of mistakes. With Netwrix Auditor, you can automate response to incidents by embedding scripts in alerts, which ensures a consistent, timely response without distracting your limited IT resources from their other critical tasks.

Automated incident response

Cost-effective data storage

Many regulatory compliance standards require retaining the SharePoint audit trail for extended periods. Netwrix Auditor can store your audit trail in a two-tiered (file-based + SQL database) cost-effective storage for more than 10 years, and enables easy access to archived data for historic reviews and inquiries.

Cost-effective data storage

Granular access to the platform resources

You can make sure that only authorized personnel can configure auditing and view audit reports in Netwrix Auditor. Simply granularly assign the appropriate access rights to each IT administration and business team in accordance with the least-privilege principle.

Granular access to the platform resources

Learn how Netwrix Auditor for SharePoint can help you detect security threats across your on-premises SharePoint and SharePoint Online, and pass audits with less effort.

Download Datasheet (.pdf)

Quickly review the functionality of Netwrix Auditor for SharePoint in a format that is convenient for comparing the product to your specific requirements.

Download Matrix (.pdf)

Deploy Netwrix Auditor wherever you need it

On-premises

Download a free 20-day trial of Netwrix Auditor and deploy it on Microsoft Windows Server.

Virtual

Download our virtual appliance and start using Netwrix Auditor without having to provision any hardware or software.

SharePoint Security Software

What data can I get?

How can I use this data?

What else do I get with Netwrix Auditor for SharePoint?

Deploy Netwrix Auditor wherever you need it

What else do I get with Netwrix Auditor
for SharePoint?