Enterprise Change and Configuration Management

Change Tracker Enterprise Version 4

Change Tracker Enterprise is a full-scale combination of configuration management and policy compliance that can be deployed enterprise-wide to ensure workstations and servers, as well as network devices, firewalls and directories meet the organization's configuration policy. This product provides full-scale reporting and management of system health, availability, performance, users, compliance, configuration, changes to systems and asset management all in one place.

“We found this offering to be a simple install. All the various components were all easily installed by running executables and following install wizards. After the installation was complete, all management was done through an easy-to-use management console. Devices can be easily added to the system individually or the network can be scanned for devices to manage. The other components of Change Tracker include On-Line Manager, which is a web GUI for Change Manager allowing administration from any machine on the network; Compliance Hub, which is the policy and compliance piece of the suite; and Remote Angel, which deploys agents to the client machines. We found all of the components to be easy to use and manage.”
Secure Computing Magazine 2010

Configuration Management – All device configurations automatically and securely backed up with the option to remediate any unauthorized configuration change. Configuration discrepancies are highlighted such as running and start up mismatch on a network switch or router or security breach on a server. Bulk scheduled reconfiguration option allows you to label & restore an approved configuration or make a configuration change to single or multiple devices through one management GUI.

Compliance Auditing – multiple ‘out of the box’ as well as ‘made to order’ reports allow you to quickly test critical security & configuration settings for servers, desktops, network devices and firewalls. With NNT, you'll get reports providing details on your administrative procedures, technical data security services, and technical security mechanisms. In fact – these reports will probably identify some security gaps. Once repaired though, you can generate these reports again & again to prove to auditors that your IT systems are compliant. Using the inbuilt change tracking described below you can ensure systems remain compliant. It's really that simple!

Change Tracking – once your firewalls, servers, workstations, switches, routers etc are all in a compliant state, you need to ensure they remain that way. The only way to do this is to routinely & automatically verify the configuration settings have not changed because unplanned, undocumented changes will always be made while somebody has the admin rights to do so – legal or otherwise! We will alert you when any unplanned changes are detected as well as keeping an audit trail of planned changes to be reconciled with the request for change details if needed. This provides a closed loop change management safety net as explained below.

Planned Change Audit Trail – when changes do need to be made to a device then you need to ensure that changes are approved and documented – we make this easy and straightforward, reconciling all changes made with the RFC or Change Approval record. An open API allows integration with most service/help desks or other change management systems to establish a link between the change approval process and the actual changes that are made.

Further Device ‘Hardening’ is enforced and audited – as systems grow and things change we run automated templates for a hardened (secured & compliant) configuration for servers and desktops and network devices to show where work is needed to remain compliant, thereafter we track all planned and unplanned changes that affect the hardened status of your infrastructure. Specifically we cover registry keys and values, file integrity, services and processes (including the option to enforce them or whitelist/blacklist them), user accounts, installed software, patches, access rights, password ageing and much more.

Device Health & Performance – reports highlight the health of devices including CPU, DISK & Memory as well as response times between devices or users and applications. Also malware reports, end point management & inventory management allow you to really take complete control of every factor that may affect IT systems

Event Log Management - All event logs from all devices will be analyzed, filtered, correlated and escalated appropriately. Event log messages are stored in a secure, integrity-assured, repository for the required retention period for any governance policy.

Correlation of Security Information & Audit Logs – we provide Log Gathering from all devices with simple correlation for security event signature identification and powerful ‘mining’ and analysis capabilities. This provides a complete ‘compliance safety net’ to ensure, for example to name just a few, virus updates complete successfully, host intrusion protection is enabled at all times, firewall rules are not changed, user accounts, rights and permissions are not changed without permission.

Server Management
Network Management
Desktop Management
Download trial software now
Change Tracker







File Integrity Monitoring

DownloadExplaining the role of File Integrity Monitoring and how it is, potentially, the most important dimension of the PCI DSS

Whitepaper

DownloadDevice Hardening, Vulnerability Remediation and Mitigation for Security Compliance.

On Demand Demonstrations

 

Whitepaper

DownloadWhy Passing your Compliance Audit is only the beginning...

Whitepaper

DownloadThe problem with ITIL Change Management Process.