|
Automatic network-wide security event analysis - no need to be an event guru!
Many companies mistakenly assume that unauthorized access is only attempted
by external parties. Actually, the majority of corporate security threats
stem from internal sources, against which a firewall offers no protection.
GFI LANguard S.E.L.M. monitors the security event logs of all your Windows
NT/2000/XP servers and workstations and alerts you to possible intrusions/attacks
in real time, giving you peace of mind.
GFI LANguard S.E.L.M. ships with a security event analysis engine which takes
into account the type of security event, security level of each computer,
when event occurred (outside or during operating hours), role of computer
and its operation system (workstation, member server or domain controller).
Based on this information, GFI LANguard S.E.L.M. can decide whether the security
event is critical, high, medium or low. Now you can quickly respond to important
security events without being an event log guru and knowing the ins and outs of each
Windows event.
Network-wide event log management
Besides analyzing security event logs, GFI LANguard S.E.L.M. can analyze application,
system and other event logs too. You can back up and clear event logs on all remote
machines in your network automatically; and view, report and filter events network-wide,
instead of just per machine. Because GFI LANguard S.E.L.M. collects all events in one
central database, it is easy to create network-wide reports and custom filters. Using
the custom rules, you can create your own event alerts based on event ID, condition and
event contents. GFI LANguard S.E.L.M. is the only event log management product that can
analyze the contents of the event properties. In addition, GFI LANguard S.E.L.M. enables
you to create reports to get a more in-depth understanding of your network.
|
