“The Access Management space is ripe for an appliance-based solution. Much like the firewall market progressed from software on a server to appliances, the Access Management market will likely move in this direction as well, as ease of deployment and maintenance are key customer requirements in this space.”

-- Earl Perkins
Gartner Research

Collateral Links:

Identisphere Overview

Introduction to Identisphere

ID-Audit Data Sheet

Introduction to ID-Audit

ID-Audit™

Auditing Network Activity and Resource Access using Identity

ID-Audit is an optional plug-in module within Identisphere Manager providing IT departments with a powerful window into their network. Displaying both real-time and historical user and resource activity, ID-Audit allows network and security administrators to visualize a baseline of events can be reported on and used to satisfy internal and external audit requirements.

ID-Audit is a unique solution that helps organizations:

Replace the manual correlation of IP address to UserID log data, which is a time and resource intensive requirement for audit reporting
Audit user behavior & resource usage at the network level based on user identity
Create real-time views of user access to critical resources
Generate historical reports that can be filtered to provide detail for internal and external audit requirements
Use the collected audit data to instantly create effective, granular policies based on User, Group, or Role-based access privileges which can then be enforced by ID-Enforce - at the network level

Generate Audit Reports for Compliance

In addition to the improved visibility and the enhanced security provided by Identity aware networking solutions, ID-Audit reduces the time and cost associated with audit driven processes, improved accuracy in reporting, and the normalization of information used to define global access policies.

ID-Audit creates over 70 predefined reports based on events related to successful/failed authentications, successful/failed accesses to protected hosts, subnets, and services, and policies that are most/least frequently enforced. Where applicable, the reports are generated on a per-host, per-user or per-group basis.

One Click Policy Creation & Enforcement

One of the main features of ID-Audit is the 'Policy Profile', which provides a tabular view of who is accessing what network resource and allows an administrator to instantaneously grant/deny user access to a specific resource. A single mouse click on any of the events in the 'Policy Profile' or the 'Event Viewe' pops-up Global, User and Exception policy templates with pre-populated values for user, source IP, destination IP, service and port number. All the administrator has to decide is whether to allow/deny access based on this information. The administrator can also choose to apply the policy to a single individual, or they can choose to apply the policy to any or all of the groups for which that user is a member. The Policy Profiler includes a link to the existing enterprise user directory to pull user group information in real-time.

ID-Audit data can be used to instantly create policy for enforcement by ID-Enforce

Cost Effective Starter Kit

ID-Audit is available as a starter kit that includes Identisphere Manager, the ID-Audit module, and an ID-Enforce Gateway. An upgrade license to the standard ID-Enforce Access Gateway that allows policy creation on enforcement is available at an additional cost.