Additional Information

1. AD change auditing:
ADAudit Plus provides unmatched visibility into changes made to AD resources like AD objects OUs, users, groups, computers, schema, and their attributes. Users can generate detailed reports documenting changes with details on who did what and when along with the new and old values of changes.

Audit management activities like creation, deletion, and modifications of AD users, groups, computers, OUs, and GPOs and analyze AD permission changes such as those made to domain-level permissions, OUs, schemas, configurations, and DNSs. ADAudit Plus maintains a complete login audit trail of all users with details of both successful and failed login attempts.

2. Azure AD change auditing:
ADAudit Plus provides a unified view of all activities such as authentication patterns and user login patterns across on-premises and cloud environments within a single console. It also tracks attempts to set and reset passwords of highly privileged user accounts in AD and Azure tenants. Track access to AD and Azure AD resources by generating instant email and SMS notifications every time a user is added or removed from a high-privileged group. You can also track users being added or removed from devices, permissions being added to or removed from popular authenticator apps, and more.

3. UBA-driven threat hunting:
ADAudit Plus helps minimize the risk of security issues like malicious insiders, brute-force attacks, privilege escalations, and more with the help of its threat detection and ML capabilities.
The UBA feature helps spot atypical user activities, such as sudden spikes in login failures, unusual login times, and a user using remote access for the first time. These could be indicators of underlying security threats. It finds hidden threats by monitoring sudden deviations in typical user behavior, such as a new process running on a server or an unusual time or volume of account lockouts. ADAudit Plus also evaluates employee