Feature Summary
-
Scalability: Support for Billions of Audit records with inline compressed HDFS storage on Isilon. Can scale to any size cluster with scale out auditing
-
Role Based login with 2 role levels
-
Syslog integration for SIEM tools
-
Parallel Syslog forward to Syslog with conditional forwarding feature. High performance syslog forwarding.
-
Meets all regulator Reporting requirements:
-
HIPAA, PCI compliance report include Disaster Recovery compliance status
-
Top Users Reports (create, delete)
-
Stale Data Access Report
-
Excessive Permissions Report
-
Authentication reporting
-
-
Active Auditing - Policy based real-time response to audit events (learn How Superna Eyeglass® is built for real-time event processing and analytics)
-
Mass Delete protection based on policy.
-
Actions:
-
Stop delete in progress with a per user action
-
Set delete thresholds
-
Snapshot files system to protect the delete with auto expired snapshots
-
-
-
DLP Protection to real-time monitor secure data on shares or exports
-
Actions:
-
Detect data copy from secured share/export per user
-
Disconnect individual users and lockout action from SMB shares
-
Alert administrator real time
-
-
-
Custom real time triggers
-
Real time user, ip, action, path, file or extension logic with and and or and grouping support to build custom security triggers for real time notifications
-
Network aware security policies factor in source ip of pc's access storage for external subnet tracking or save zone network rule that flag IO from untrusted subnets.
-
-
"Where did my folder go?"
-
folder move operations that hide data from other users on a shared drive
-
Find renames by user or path, click the Control Z button to return data to the original location. Quickly and easily.
-
Now finds deleted files with the same speed and simplicity
-
-
-
Security Auditing.
-
Wiretap - Real time monitor all file activity on a share/export, path or user.
-
File operation viewer shows real-time file activity by user or path on a wiretap target
-
Use cases: Debug business application performance issues, monitor user activity for audits
-
-
-
Automated Self Test
-
Robot Audit runs daily to test audit data creation and reporting
-
How Easy Auditor Simplifies and Lowers the Cost of Auditing
-
Lower cost than traditional legacy audit platforms to store the audit database. Per NAS device not per seat pricing.
-
Supports Isilon storage for analytics database to reduce the cost versus traditional relational DB solutions that require Fibre channel disk.
-
Inline compression of analytics data reduces storage cost by 8 to 1 ratio.
-
Data is always compressed on disk
-
Higher performance with active active active solution supports load balanced audit processing
-
NO fibre channel or block storage needed to scale performance of queries
-
Scales performance with Isilon cluster node count
-
Powered by Isilon HDFS, allows the Isilon cluster to accelerate queries and perform analytics on audit data
-
Removes requirement for SQL, Oracle, MySQL relational databases
-
Simple to deploy on virtual infrastructure. No physical hardware appliance needed.
-
Highly available clustered solution with 3 VM's for queries and audit data processing
-
Uses Isilon storage pools for data protection of the Audit database
-
Simple DR leveraging Dell EMC SyncIQ to replicate the Audit database
-
Simple Failover using Superna Eyeglass® DR edition to failover the auditing Smartconnect name to warm standby Superna Eyeglass® audit cluster VM's