The LogClarity® Enterprise Solution was developed to help IT managers and security administrators combat the uphill battles of the mundane log management tasks while transforming the convoluted event logs into simple-to-understand actions. Log Fidelity’s technological log analysis advancements have surpassed the mindless collect-all methods of yesterday that other logging solutions provide, by developing an automated intelligence engine.
LogClarity® re-invents event log management and data security by accurately disseminating the real user, system, and application activity from the misleading and convoluted event data. The result is instant threat assessment, unprecedented uptime and performance troubleshooting, powerful incident response capabilities and realistic reporting.
LogClarity® Enterprise Solution High Level Features
- Enterprise Log Management
- Intelligent Log Filtration and Collection
- Enterprise Information Asset Monitoring
- Database Activity Monitoring
- Group/Audit Policy Change Monitoring
- Incident Management and Response
- Comprehensive Log Forensics
- Accurate Compliance Reporting
The LogClarity® Enterprise Solution is comprised of five powerful modules that provide a solid foundation for the entire Log Management lifecycle:
LogClarity® Compliance Reporting and Incident Response Dashboard is a web-based central control center from which all LogClarity® users have access to event log data, incident and response capabilities, log searching and reporting. Through the LogClarity® Dashboard, users can get a high-level view of their area of responsibility. Drill-down capabilities are available to investigate and eradicate security and operational issues.
The LogClarity® Incident Response module enables organizations to activate over 50 pre-defined alerts. These security measures are designed to monitor known targeted areas such as group policies, privileged groups, and the administrator account. Incident response is a valuable asset to increasing security and ensuring system and network operations. The Compliance Reporting module provides over 300 instant compliance and historical reports to meet IT manager or auditor requests in the areas of SOX, PCI, FISMA, HIPAA, NISPOM and more. Read More
LogClarity® Domain Controller Edition is designed to be deployed onto domain controllers to collect, filter, centralize and normalize the huge volume of complex event logs that are generated on domain controllers. Event logs that are generated on domain controllers need to be monitored for dangerous activity such as domain level group policy changes, dangerous permission elevations, and many other unauthorized domain activity. The logs contained on these critical servers are a large part of the equation for understanding real domain level activity. LogClarity® uses deep knowledge of Active Directory and the Windows auditing system to categorize all event logs by object type. This powerful and intelligent log analysis and filtration technology is called the LogClarity® Design Framework (LCDF). The LogClarity® Domain Controller Edition serves as the central hub, for the entire enterprise, and is the key to increasing security and overcoming log retention limitations. These are just a few key benefits of this powerful LogClarity® module. Read More
LogClarity® Database Edition is designed to be deployed onto database servers to collect and monitor activity on critical database servers. The LogClarity® Database Edition captures all SQL queries transactions towards customer private data as well as privileged user activity. Sensitive customer data such as health records, credit card information, social security numbers, and other customer information assets need to be protected at all costs.
The LogClarity® Database Edition features Database Access Tracking Technology (DAT). DAT is a powerful technology that monitors all SQL query activity from across the network. It can also identify and monitor al direct access to the database from privileged users. LogClarity® tracks all privileged user activity as well as the customer data itself. Insiders can be the biggest threat to customer private data. LogClarity® doesn’t use the native database auditing which can leave a heavy footprint on performance. The LogClarity® Database Edition is just another example of what sets the LogClarity® Enterprise Solution apart from all other log management solutions. Helping customers meet compliance while ensuring customer data is secure is the goal. Without database activity monitoring, combined with enterprise monitoring, other solutions fall short. Read More
LogClarity® Server Edition is designed to be deployed onto all critical servers to increase server security. LogClarity® Server Edition can detect all unauthorized access to intellectual property, elevated permission changes, and abuse of company security policies. Privileged users or perpetrators who may have gained rights to critical data assets can easily compromise, damage, or steal intellectual property for personal gain. They may also inflict damage to the enterprise which can be very costly.
The LogClarity® Server Edition features File Access Log Translation Technology (FALT) which translates the cryptic file (object) access events into clear messages. FALT also correlates related events that can normally mislead or blind security teams from unauthorized use of data. LogClarity® Server Edition also monitors log data on critical servers for unwarranted activity such as logic bomb attacks, unauthorized application installations and more. Intellectual property can be stored in many locations, and they must be protected from abuse or other fraudulent acts. The LogClarity® Server Edition can identify and alert stakeholders of unwarranted actions such as permission changes towards critical files and moving or copying of confidential data across the enterprise. LogClarity® Server Edition is the best defense against data theft. Read More
LogClarity® Syslog Edition is designed to collect, centralize, and monitor event logs from firewalls, routers, switches and UNIX systems. Network activity is part of any solid enterprise security policy. Identifying anomalies and diagnosing network and system problems can be accomplished through syslog collection. The LogClarity® Syslog Edition enabled users to collect, monitor, alert and respond to critical issues that occur on devices and UNIX servers. The event logs are collected and centrally stored on a central log server. The logs are instantly secured with an MD5 hash. The LogClarity® Syslog Edition normalizes the syslog events into a highly searchable format which simplifies forensics, and automates the correlation of all event log data. Read More