NetWrix Active Directory Change Reporternetwrix.co.uk/download/QuickStart/NetWrix_Active... · NetWrix Active Directory Change Reporter. is a tool that reports the changes made to

NetWrix Active Directory Change Reporter

Version 6

Freeware and Standard Editions Quick Start Guide

_______________________ NetWrix Active Directory Change Reporter User Guide

Contents 1. INTRODUCTION ........................................................................................................................................................ 3

1.1 KEY FEATURES .................................................................................................................................................................... 3 1.2 LICENSING .......................................................................................................................................................................... 4 1.3 HOW IT WORKS .................................................................................................................................................................. 5

2. GETTING STARTED .................................................................................................................................................... 7

2.1 SYSTEM REQUIREMENTS ....................................................................................................................................................... 7 2.2 CONFIGURING ACTIVE DIRECTORY CHANGES AUDITING USING AUDIT CONFIGURATION WIZARD ........................................................ 9 2.3 INSTALLATION ................................................................................................................................................................... 10

3. WORKING WITH STANDARD OR FREEWARE EDITIONS ............................................................................................ 11

3.1 CONFIGURATION ............................................................................................................................................................... 11 3.2 DATA COLLECTION AND REPORTING ...................................................................................................................................... 14 3.3 MANUALLY CONFIGURE THE AUDITING SETTINGS .................................................................................................................... 15

3.3.1 Audit Object Security Settings ........................................................................................................................ 15 3.3.2 Audit "Who/When" Information for AD Object Modifications ....................................................................... 15 3.3.3 Audit Active Directory Access ......................................................................................................................... 15 3.3.4 Audit Changes to Configuration and Schema Containers ............................................................................... 16

4. FUTURE STEPS ........................................................................................................................................................ 19

5. ABOUT NETWRIX PRODUCTS .................................................................................................................................. 20

6. ADDITIONAL SOFTWARE LINKS ............................................................................................................................... 21

7. CONTACTING NETWRIX .......................................................................................................................................... 22

8. DISCLAIMER ........................................................................................................................................................... 22

_______________________________________ ___ NetWrix Active Directory Change Reporter Administrator’s Guide

3

1. Introduction Active Directory change auditing is an important procedure for limiting unauthorized changes and errors to Active Directory configuration. One single change can put your organization at risk, introducing security breaches and compliance issues. Built-in Active Directory auditing lacks many important features (for example, it does not provide you the before and after values for changed properties) and does not have reporting capabilities. Careful analysis of multi-megabyte Security logs can take enormous resources and still never paint the whole picture.

NetWrix Active Directory Change Reporter is a tool that reports the changes made to Active Directory and delivers reports, containing summary and detailed information on a daily basis. These reports include the 4 W — Who, What, When, and Where for all changes, plus before and after values for each of the settings, and also changes made to Active Directory configuration, schema, and other Active Directory objects. You can use these reports to:

• Monitor day-to-day administrative activities. • Prepare compliance reports for your SOX, GLBA and HIPAA auditors.

NetWrix Active Directory Change Reporter records all modifications, including both user and administrative activity, and e-mails daily reports to Active Directory administrators detailing every Active Directory change. Collected audit data is archived and can be stored for years, so you can build a summary of changes made to Active Directory during any period and drill down to detailed information as necessary. This archiving function allows organizations to analyze any policy violations, adhere to security best practices and maintain established internal policies. (*) The Standard and Enterprise Editions are available. The Enterprise Edition includes advanced features, such as ‘Who’ and ‘When’ fields, long term change archiving, schema change detection, and comes with technical support and NetWrix Enterprise Management Console.

1.1 Key Features NetWrix Active Directory Change Reporter helps you to carry out the following auditing and reporting tasks:

• Detect and report on changes made to Active Directory objects, Group Policies, Exchange Servers. Reports include information about what changes were made, who (*) made the changes and when (*) were they made.

• Report on previous and current values for every change. • Generate on-demand Web-based reports. (*) • Create custom reports (can also be ordered from NetWrix). (*) • Store collected audit data and enable historical reporting for any period of time. (*)

* - Only available in the Standard and Enterprise Editions of the product.


4

1.2 Licensing Active Directory Change Reporter comes in three Editions: Freeware, Standard and Enterprise. The table below outlines the differences between them.

Feature Freeware Standard Enterprise Edition

Who and When fields for every change No Yes Yes

Advanced reports based on SQL Reporting Services, with filtering, grouping and sorting

No Detailed Detailed

Custom reports No Yes. Create manually or order from NetWrix

Yes. Create manually or order from NetWrix

Enterprise-class scalability No No Full

Long-term archiving and reporting No Any period of time Any period of time

Technical support Support forum Phone, e-mail, Support forum Phone, e-mail, Support forum

Licensing Free of charge Per user Per user; please request a quote

a single installation handles numerous managed objects(domains, multiple domains)

No No Yes

integrated interface for all NetWrix products which provides centralized configuration and settings management

No No Yes

integrated advanced reporting with lots of predefined out-of-the-box reports for all the major platforms

No Yes Yes

The Free Edition can be used by companies and individuals for an unlimited time, at no charge. The Standard and Enterprise Editions can be evaluated free of charge for 20 days.

Please note that different parts of the Active Directory Change Reporter: Active Directory Change Reporter, Group Policy Change Reporter and Exchange Change Reporter have to be bought separately.

http://www.netwrix.com/forum�



http://netwrix.com/requestq.html?product=adcr�


5

1.3 How It Works

Figure 1: Product Architecture and data flow


6

The NetWrix Active Directory Change Reporter data collection and reporting workflow is usually as follows:

1. A user launches the configuration utility and sets the parameters for the automated data collection and reporting, choosing whether to report on: • Active Directory changes

- Users configuration changes - Changes to Active Directory groups - Active Directory Configuration and Schema changes - Domain structure changes - Changes to OUs - Additions to OUs - Additions to domains - Domains object properties changes

• Group Policy changes - Group Policy Objects changes - Group Policy Objects creation - Group Policy Objects removal

• Exchange Servers changes - Security policy violations - Exchange objects and permissions changes - Unauthorized and unplanned changes

2. A dedicated scheduled task which is launched periodically (every night, at 3 AM by default; it can also be launched manually when needed) collects Active Directory and/or Group Policy and/or Exchange snapshots and/or audit data, and e-mails the change reports to the specified recipients. The task name is NetWrix Management Console – Active Directory Change Reporter - <your domain name> where <your domain name> is the actual name of your managed domain.

3. If SSRS-based reporting is enabled and configured, the task will also store information about the Active Directory, Group Policy and Exchange changes to the specified SQL server database (you can use Database Importer to import data on demand). A web browser is used to view the reports in Report Manager (note that this feature is unavailable in the Freeware Edition); if working with Enterprise Edition, NetWrix Enterprise Management Console can be used to run and view the reports.

4. A mail client is used to view the reports sent by e-mail (all Editions); the Report Viewer tool is used in the Freeware and Standard Editions to generate and view the on-demand reports.


7

2. Getting Started This section describes the necessary prerequisites for Active Directory Change Reporter installation.

2.1 System Requirements The product can be installed on any computer running Windows XP SP2 or higher. The computer must belong to the managed domain.

Supported Active Directory environments (both 32 and 64-bit): • Windows 2000 • Windows Server 2003, any forest mode (mixed, native, 2K3) • Windows Server 2008 (including R2). Windows 2008 would work better for Group Policy Change

Reporter if you need to monitor GP Preferences

Supported Exchange environments (both 32 and 64-bit): • Exchange Server 2003 • Exchange Server 2007

Additional software: • .Net Framework 2.0 or later • Windows Installer 3.1 or later • Microsoft Management Console 3.0 or higher (viable only for The Enterprise Edition) • To use advanced reporting (*), SQL Server 2005 Express Edition with Advanced Services (can be

installed automatically or obtained from Microsoft Download Center) • To audit Group Policy changes, you will need Group Policy Management Console (GPMC) and .NET

Framework 1.1. (for download links, see the section 6. Additional Software Links)

Additional requirements: • Disk space – enough for temporary data storage (the configuration snapshots will be saved there).

Required space depends on the number of users in your Active Directory and is calculated as follows:

Required Disk Space = Number of Users * 1 Kb

For example, if you have 5000 users in your domain, you need at least 5MB of storage (daily collected data); to keep 1000 users data for 2 months (around 60 days), you need about 60MB of space (1K * 1000 * 60).

• The size of Security event logs on your domain controllers must be large enough to hold events for at least 36 hours. Otherwise, you may get incomplete information about who made some of the modifications. It is recommended to use the NetWrix Audit Configuration Wizard to adjust the event log sizes and other settings (see section 3.3 Audit Configuration Wizard). The other way is to manually change Group Policy to adjust event logs sizes (for that, use Administrative Tools | Domain Controller Security Policy; configure log size in Computer Configuration>Windows Settings>Security Settings>Event Log node). The product reports conditions when one or more logs have been overwritten since the last collection (*)

http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=4c6ba9fd-319a-4887-bc75-3b02b5e48a40�


8

• SQL Server 2005 or 2008 with Reporting Services (SSRS) are required for advanced reporting (*). SQL Server 2005 Express Edition with Advanced Services is supported; it can be installed automatically to create and view the advanced Web-based reports. The following article explains how to configure SQL Server 2005 Express Edition to allow remote connections: http://support.microsoft.com/default.aspx?scid=kb;EN-US;914277.

• SSRS Report Builder is required to create custom reports (*). To launch Report Builder, .NET Framework 2.0 must be installed on the client computer (used to connect to SSRS). Note that Report Builder is available in SQL Server Enterprise or Standard Edition; Express Edition does not provide this functionality.

Required rights and permissions: • The account under which NetWrix Active Directory Change Reporter scheduled task will run requires

the following: 1. Sufficient rights to query the entire Active Directory. 2. To collect and report on objects' security changes, this account must have Manage auditing

and security log user right enabled (if the task is run under Domain Administrator account, this right will be enabled by default). Adjust Domain Controller Security Policy accordingly (*).

• If you plan to collect data using agents, consider that agent service will run on Domain Controllers under Local System account. Also the account under which you run Active Directory Change Reporter must be a Domain Administrators group member. (*)

(*) - for the Standard and Enterprise Editions only.

http://support.microsoft.com/default.aspx?scid=kb;EN-US;914277�


9

2.2 Configuring Active Directory Changes Auditing Using Audit Configuration Wizard

Before you start the Active Directory auditing, you must configure some audit settings for the Who and When report fields to be gathered properly. To do this automatically, use the NetWrix Audit Configuration Wizard described below (to manually setup Auditing, see section 3.3 Manually Configure the Auditing Settings):

The NetWrix Audit Configuration Wizard is a tool that allows you to automatically configure all the necessary audit settings on your managed units.

The launch the tool please go to Start > All Programs > NetWrix > Active Directory Change Reporter > Audit Configuration Wizard.

After doing so, the first step of the wizard will appear (Figure 43):

Figures 43 and 44: The first and the second Audit Configuration Wizard steps.

Here you must enter the domain name that you want to configure the audit settings for. After doing so, click Next, it will take you to the following wizard step ‘Audit Policy Settings’ (Figure 43). Select an account that was specified for data collection (the account will be checked for the correct audit privileges) and click Detect… to determine if it needs tweaking. If the wizard detects some unfavorable audit rights values, click Adjust… to automatically modify them. The wizard is pretty self-explanatory and same operations are performed on every step.


10

2.3 Installation To install Active Directory Change Reporter, run the setup program on any computer in the domain in the target forest.

Important: If a target computer is running Windows Vista or above, make sure User Account Control (UAC) is turned off.

Follow the steps of the wizard. When prompted, accept the license agreement, then specify the installation folder, and click Next to proceed with the installation.

On the last step of the installation wizard, the following dialog appears:

Figure 3: Active Directory Change Reporter Setup configuration utility selection dialog window

Select to launch the basic configuration utility for the Freeware and Standard Editions or the full-featured one for the Enterprise Edition. Click Finish to complete the setup.

To learn how you can configure and use Active Directory Change Reporter (the basic configuration utility, used in the Freeware and Standard Editions) please refer to the section below.


11

3. Working with Standard or Freeware Editions

Standard and Freeware Editions allow you to use the basic configuration utility – it can be recommended to novice users. However several features are unavailable for the product with Freeware license – they are marked with (*) in the configuration description below.

Standard Edition is limited to manage a single domain only; if you need more than one domain, you have to use the Enterprise Edition (requires Enterprise license).

3.1 Configuration Launch the configuration utility from the Start menu by selecting NetWrix | NetWrix Active Directory Change Reporter Commercial Version | Configurator (Basic Mode). The Configuration utility main window is displayed as follows:

Figure 4: Active Directory Change Reporter Standard Edition configuration utility window


12

The following configuration settings are available in this dialog: 1. Check Enable Active Directory Change Reporting to enable the product. 2. Type in the FQDN of an Active Directory domain that should be checked for changes into the

Managed Domain field. 3. Leave the default path in the Store data to: field. All the snapshots made by NetWrix products you

are using will be stored in the corresponding subfolders of that folder. 4. Leave Enable long-term archiving for unchecked as by default. (*) 5. To increase data collection speed and effectiveness check Use agents to collect data from domain

controllers (*) (this is a recommended method). For details about agent usage, refer to NetWrix Active Directory Change Reporter Administrator Guide.

6. Under Email report delivery settings, do the following: a) Provide e-mail addresses to which the reports on Active Directory changes will be delivered

(multiple recipients should be separated by a semicolon). b) Choose whether you need to Collect Group Policy information (bought separately) and provide

e-mail addresses to which the reports on changes to the Group Policy settings will be delivered (multiple addresses should be separated by a semicolon).

c) Choose whether you need to Collect MS Exchange information (bought separately) and provide e-mail addresses to which the reports on changes to the Exchange servers will be delivered (multiple addresses should be separated by a semicolon).

d) Supply SMTP server settings (the name and the port) e) Supply From address.

7. Click Verify to test the e-mail settings you specified. 8. To finish with configuration settings, click Apply.

If this is your first program launch and the long-term archiving is enabled, the following message will pop up:

Click YES for the program to automatically change the property to the number of days specified in the message.

http://www.netwrix.com/download/documents/NetWrix_Active_Directory_Change_Reporter_Administrator_Guide.pdf�



13

You will be prompted for the credentials to run the data collection and the report generation.

Figure 8: Scheduled Task Credentials dialog window

Specify the account under which the scheduled task (named NetWrix Management Console – Active Directory Change Reporter - <your_domain_name> where <your_domain_name> is the name of the specified domain) will collect the related changes data and e-mail the reports to the specified recipients.

Note: Make sure the account you supply has sufficient privileges, that is, read access to the Active Directory objects from the selected domain, ‘Manage auditing and security log’ privilege, and Local administrator rights on the computer where configuration snapshots will be stored in the repository. The account must also belong to the Domain Admins group if network traffic compression is enabled.

Important: The Freeware Edition only reports the fact of any file system permission changes (the information about who made the change, what was changed and when it occurred is not available in that edition).

(*) – Only available in the Standard and Enterprise Editions. (**) – Only available in Enterprise Edition. To change the configuration settings later, you may invoke the configuration utility from the Start menu.


14

3.2 Data Collection and Reporting This section describes how you can perform the data collection and reporting using Active Directory Change Reporter Freeware and Standard Edition.

When needed, you can manually launch the task named NetWrix Management Console – Active Directory Change Reporter - <your_domain_name> (where <your_domain_name> is the name of a managed domain) using Task Scheduler (by default, this task is launched automatically at 3.00 AM every day). Also, you can use Task Scheduler to modify the task properties (for example, schedule, account, etc.)

When you run the task, it collects the snapshots of Active Directory settings, Group Policy Objects and Exchange settings together with audit data, and e-mails reports on the detected changes matching the specified filters to the corresponding recipients. It also stores data to an SQL database if configured *.

At the first run of the scheduled task, a message notifies you that the initial analysis is completed. Next, you can make some changes to your Active Directory settings (e.g. change a description of one of your users) to see an example of how they will be reported. After that, you can launch the scheduled task again, and then check the mailbox for the new report. The changes should be reported like shown in the figure below.

Figure 9: Active Directory Change Reporter Summary Report email example

(*) – Only available only for the Standard and Enterprise Editions

If Advanced Reporting was configured (as described later in this guide), you can click the More reports link from this email report to view the HTML versions of the reports in your web browser.


15

3.3 Manually Configure the Auditing Settings Follow the recommendations provided in this section to manually setup the auditing settings.

3.3.1 Audit Object Security Settings

To audit object security changes, user account of the scheduled task must have Manage auditing and security log user right enabled (assigned to Domain Admins by default). Adjust Domain Controller Security Policy accordingly.

3.3.2 Audit "Who/When" Information for AD Object Modifications

Object-level Active Directory auditing must be configured for ALL Active Directory objects (not only domain controller objects or users making changes) to audit “Who/When” information for all modifications (otherwise, "Who/When" information will not be reported). Open Active Directory Users and Computers snap-in located in the Administrative Tools subsection of the Control Panel and do the following:

1. From the main menu, select View, then select Advanced Features and make sure that the Advanced Features item is turned ON.

2. Right-click the root domain object, and go to its Properties, there select Security tab, click Advanced, and select Auditing tab.

3. Click Add and type Everyone, then click OK. 4. Set the Apply onto setting to This object and all child objects (default).

Warning: DO NOT click the checkbox named ‘Apply these auditing entries to objects and/or containers within his container only’. Also make sure that the Apply onto selection indicates ‘This object and all child objects’.

5. Select all Successful Audit items except for the following: Full Control, List Contents, Read Permissions, Read All Properties.

6. Click OK.

3.3.3 Audit Active Directory Access

Auditing of the Directory Service Access | Success and Audit Account Management | Success categories must be turned ON for all domain controllers.

On Windows 2003, open Default Domain Controller Policy from Start | Administrative Tools. On Windows 2008, open Group Policy Management from Start | Administrative Tools, navigate to ForestName \ Domains \ DomainName \ Group Policy Objects \ Default Domain Controller Policy, and right-click to Edit it. Then:

• Navigate to Computer Configuration \ Windows Settings \ Security Settings \ Local Policies \ Audit Policy.

• In the right pane, double-click Audit Directory Services Access and enable Success option. • In the right pane, double-click Audit Account Management and enable Success option.


16

3.3.4 Audit Changes to Configuration and Schema Containers

If you want to track changes to domain Configuration container, then you should enable object-level auditing for this container, using the following steps:

• Run ADSI Edit utility (a part of the Windows Support Tools package, for a download link, see the section 6. Additional Software Links)

• Right-click the root node, select Connect to, and connect to the Configuration naming context of your domain (choose Select a well known Naming Context to be able to do this, see the screenshot below)

Figure 2a: Connection Settings dialog window

• Right-click the Configuration node for properties and go to the Security tab.


17

• Click Advanced and select the Auditing tab. • Click Add and type Everyone, click OK.

• In the Apply onto list, select This object and all child objects.


18

• Select all Successful Audit items except for the following: Full Control, List Contents, Read Permissions, Read All Properties. Important: Do NOT click the checkbox named Apply these auditing to objects and/or containers within this container only.

• Click OK.

Note: If you want to track changes to domain Schema container, then you should enable object-level auditing for this container, using the similar procedure but connect to the Schema naming context instead of Configuration.

To audit changes to Schema container, delete (or comment out with #) the following lines from the omitstorelist.txt file located in the product installation folder:

• attributeSchema.* • classSchema.* • subSchema.*


19

4. Future Steps There are also many more features available in NetWrix Active Directory Change Reporter like On-Demand Reporting, SSRS-based Advanced Reporting, Group Policy Change Reporting, Exchange Change Reporting, Long-term data archiving, Active Directory Object Restoring, Configurable Data Gathering Scheduling and others. For more information please refer to the NetWrix Active Directory Change Reporter Administrator Guide.




20

5. About NetWrix Products Solutions developed by NetWrix Corporation help organizations to meet compliance standards, simplify identity management, and reduce IT infrastructure costs. The product line includes solutions for change management, identity management, virtualization, and Active Directory troubleshooting.

Enterprise Management Suite: NetWrix Enterprise Management Suite is a rich collection of all NetWrix products combined together into one integrated solution. The suite is well-maintained and regularly updated with new versions and completely new products that all customers are entitled to as long as their maintenance is up to date.

Change Reporter Suite: The Change Reporter Suite is an integrated solution for automated tracking and reporting of all critical changes in the entire IT infrastructure, including Active Directory, file servers, Microsoft Exchange, filer appliances such as NetApp or EMC, virtual and physical infrastructure, SQL Server databases. Everything is centrally audited, consolidated, and presented in easy to understand reports with before and after values of all “who, what, when and where” modifications.

Identity Management Suite: The NetWrix Identity Management Suite brings convenience, enhanced security, and brings sensible benefits to everyone within an organization. The solution resolves account lockouts, forgotten passwords and password expiration problems, while also providing user account de-provisioning and privileged password management.

Active Directory Change Reporter: Full-featured Active Directory auditing and compliance solution with full coverage of AD, Group Policy, Exchange, and object-level rollback capabilities. Tracks who changed what, when, and where in Active Directory and related systems.

USB Blocker: USB Blocker enforces centralized access control to prevent unauthorized use of removable media that connects to computer USB ports—memory sticks, removable hard disks, iPods, and more.

File Server Change Reporter: File server and filer appliance auditing solution. Supports Windows servers, NetApp Filers, EMC appliances.

SQL Server Change Reporter: Auditing and reporting solution to monitor changes to SQL servers, instances, database schema, logins and roles, etc.

Privileged Account Manager: Shared access to privileged accounts with automatic password maintenance.

Non-owner Mailbox Access Reporter: Track users who access other user’s mailboxes and report unauthorized access to mailboxes of C and VP-level accounts.

NetWrix Password Manager: product gives end users the ability to securely manage their passwords and resolve account lockout incidents in a self-service fashion without involvement of help desk personnel.

NetWrix Account Lockout Examiner: detects, diagnoses, and resolves account lockouts in real time to reduce administrative costs associated with manual resolution of account lockouts.

Full list of products: http://www.netwrix.com/products.html For more information, please visit www.netwrix.com or call our toll-free number: +1-888-638-9749.

http://netwrix.com/Enterprise_Management_Suite.html�

http://netwrix.com/change_auditing_solution.html�

http://netwrix.com/identity_management.html�

http://netwrix.com/active_directory_change_reporting_freeware.html�

http://netwrix.com/usb_blocker_freeware.html�

http://netwrix.com/file_server_auditing_change_reporting_freeware.html�

http://netwrix.com/sql_server_audit_change_reporter_freeware.html�

http://netwrix.com/privileged_account_manager.html�

http://netwrix.com/non_owner_mailbox_access_reporter_exchange_freeware.html�

http://www.netwrix.com/requeste.html?product=prm�

http://www.netwrix.com/requeste.html?product=ale�

http://www.netwrix.com/products.html�

http://www.netwrix.com/�


21

6. Additional Software Links .Net Framework 2.0 is available at http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=0856eacb-4362-4b0d-8edd-aab15c5e04f5 or for 64-bit systems at http://www.microsoft.com/downloads/details.aspx?FamilyID=B44A0000-ACF8-4FA1-AFFB-40E78D788B00&displaylang=en Windows Installer 3.1 is available at http://www.microsoft.com/downloads/details.aspx?familyid=889482FC-5F56-4A38-B838-DE776FD4138C&displaylang=en Microsoft Management Console 3.0 for Windows XP (KB907265) at http://www.microsoft.com/downloads/details.aspx?FamilyID=61fc1c66-06f2-463c-82a2-cf20902ffae0&displaylang=en ADSI Edit utility is available at http://www.microsoft.com/downloads/details.aspx?FamilyId=6EC50B78-8BE1-4E81-B3BE-4E7AC4F0912D&displaylang=en

http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=0856eacb-4362-4b0d-8edd-aab15c5e04f5�

http://www.microsoft.com/downloads/details.aspx?FamilyID=B44A0000-ACF8-4FA1-AFFB-40E78D788B00&displaylang=en�

http://www.microsoft.com/downloads/details.aspx?familyid=889482FC-5F56-4A38-B838-DE776FD4138C&displaylang=en�

http://www.microsoft.com/downloads/details.aspx?familyid=889482FC-5F56-4A38-B838-DE776FD4138C&displaylang=en�

http://www.microsoft.com/downloads/details.aspx?FamilyID=61fc1c66-06f2-463c-82a2-cf20902ffae0&displaylang=en�

http://www.microsoft.com/downloads/details.aspx?FamilyID=61fc1c66-06f2-463c-82a2-cf20902ffae0&displaylang=en�

http://www.microsoft.com/downloads/details.aspx?FamilyId=6EC50B78-8BE1-4E81-B3BE-4E7AC4F0912D&displaylang=en�

http://www.microsoft.com/downloads/details.aspx?FamilyId=6EC50B78-8BE1-4E81-B3BE-4E7AC4F0912D&displaylang=en�


22

7. Contacting NetWrix If you encounter any issues during your testing or use of the Event Log Manager, please first check the knowledge base:

http://netwrix.com/knowledge_base.html

If you will not find a solution for your issue in the Knowledge Base, then contact NetWrix technical support:

www.netwrix.com/support

201-490-8840 x1 for technical support

8. Disclaimer The information in this publication is furnished for information use only, does not constitute a commitment from NetWrix Corporation of any features or functions discussed and is subject to change without notice. NetWrix Corporation assumes no responsibility or liability for any errors or inaccuracies that may appear in this publication.

NetWrix is a registered trademark of NetWrix Corporation. The NetWrix logo and all other NetWrix product or service names and slogans are registered trademarks or trademarks of NetWrix Corporation. Active Directory is a trademark of Microsoft Corporation. All other trademarks and registered trademarks are property of their respective owners.

© 2010 NetWrix Corporation. All rights reserved. www.netwrix.com

http://netwrix.com/knowledge_base.html�

http://www.netwrix.com/support�

http://www.netwrix.com/�

Documents

NetWrix Active Directory Change Reporternetwrix.co.uk/download/QuickStart/NetWrix_Active... · NetWrix Active Directory Change Reporter. is a tool that reports the changes made to