New Freeware Exposes Active Directory Permissions -- Redmondmag.com

New Freeware Exposes Active Directory Permissions

IT auditing software provider Netwrix released a free tool to help security teams reduce risk of inside jobs by reporting permissions in Active Directory and file shares.

By Jeffrey Schwartz
02/25/2015

Netwrix today released freeware that lets IT security administrators discover who has access to what in Active Directory and file shares. The move comes as a growing number of security breaches are a result of inside jobs by current and former employees.

Citing the PWC 2015 global State of Information Survey, Netwrix noted that one third of organizations said inside jobs do more damage than incidents coming from the outside. Moreover, Netwrix pointed to last year's Verizon Data Breach Report, which found that 8 percent of data breaches come from insiders or misuse and 88 percent of those breaches are the result of those who abuse permissions.

Netwrix and others point out these incidents can be prevented by seeing who has permissions -- especially an excessive amount of access to systems. The new free Netwrix Effective Permissions Reporting Tool scans Active Directory domains and file shares to discover the inordinate number of permissions or malicious activities and generates reports that can be used for either internal or outside compliance audits, the company said.

The company is promising the tool will remain free and like all software providers who issue freeware, Netwrix is hoping some will upgrade to its more robust Netwrix Auditor change and configuration auditing suite. "Strengthening IT security is a question of both trust and control," said Netwrix Founder and CEO Michael Fimin, in a statement. "Insiders are very hard to detect, which is why they are a nightmare for any organization."

Netwrix Effective Permissions Reporting lets security administrators investigate a user or group to ensure they have appropriate permissions, according to the company. The tool is available for download.

About the Author

Jeffrey Schwartz is editor of Redmond magazine and also covers cloud computing for Virtualization Review's Cloud Report. In addition, he writes the Channeling the Cloud column for Redmond Channel Partner. Follow him on Twitter @JeffreySchwartz.

Featured

Cisco Warns of Brute Force Attacks Targeting VPNs and Firewalls

Cisco has revealed that a global increase in brute force attacks targeting Virtual Private Networks (VPNs) and other devices is currently taking place.
What's Inside Microsoft 365's Security Toolbox?

Microsoft provides plenty of native tools to secure Microsoft 365. IT pros just have to know where to look.
Microsoft Kills 30-Day Data Retention Policy for Copilot in Fabric

Microsoft this week announced several usability improvements coming to Copilot in Fabric in preparation of its general availability release later this year.
Using Microsoft Office to Build a Network Diagram 2

Now that we've set up our process, let's dig in with the actual execution.
Microsoft Graph 'Activity Logs' Feature Goes Live

Microsoft announced the general availability of the "activity logs" capability in Microsoft Graph, giving administrators more options to track user activity and identify patterns of potential misuse.