• • LogClarity® Suite Overview
  • LogClarity® Domain Controller Edition
  • LogClarity® Database Edition
  • LogClarity® Server Edition
  • LogClarity® Syslog Edition
• • Enterprise Solutions
    • Enterprise Log Management Overview
    • Hidden Challenges of Log Management
    • The Log Fidelity Strategy
    • Collect-All Solutions Don't Work
    • Leading Cause of Data Pollution
    • Intelligent Log Management
    • Enterprise Security or Data Security
    • How Does LogClarity® Compare
    • LogClarity® Suite Overview
    • LogClarity® Suite's 5 Powerful Modules
    • LogClarity® Incident Management
    • LogClarity® Enterprise Reporting
    • LogClarity® Data Mining & Forensics
    • SIM Solutions: NOT the Silver Bullet
    • Scalability is the Cornerstone of LogClarity®
  • Compliance Solutions
    • Pass Security Audits Using Smart Automation
    • The 5 Key Components For Meeting Compliance
    • PCI Compliance
    • HIPAA Compliance
    • SOX Compliance
    • FISMA Compliance
    • eDiscovery
  • Database Solutions
    • Protecting Customer Information on Databases
    • Database Activity Monitoring (DAM) Overview
    • The Solution: LogClarity® Database Edition
    • Native Database Auditing is Insufficient
    • LogClarity's Secret to Scalability
  • Server Solutions
    • Enterprise Intellectual Asset Protection
    • The Challenges of Auditing Data Access
    • The Solution: LogClarity® Server Edition
    • Why LogClarity® Suite?
  • Active Directory Solutions
    • Major Event Log Flaws Exposed
    • LogClarity® Solves Windows Logging Challenges
    • LogClarity® Product Overview
    • LogClarity® Difference
    • LogClarity® Core Technology
    • The Logon Authentication Confusion on Windows
    • LogClarity's Solution to the Logon Confusion
    • LogClarity® Domain Controller Edition
    • Understanding and Correlating Windows Events
    • Syslog Formatting Limitations
    • Collect-All Solutions Don't work
    • Service Account Log Filtering
  • Security Solutions
    • Security Incidents Don't Have To Be Costly
    • LogClarity® Incident Management
    • Permission Escalation Monitoring
    • Privileged User Monitoring on Databases
    • LogClarity® Group Policy Monitoring & Alerting
    • LogClarity® Audit Policy Monitoring & Alerting
    • LogClarity® Data Mining & Forensics
  • Insider Threat Solutions
    • Insider Threat Overview
    • Increase Security Through Event Log Management
    • Enterprise Protection Against Logic Bombs
    • Why LogClarity® Suite?
  • IT Manager Solutions
    • Overcoming the Log Management Lifecycle
    • Common Log Management Hurdles
    • Log Retention Goals Can Be Achieved
    • Why is Intelligent Log Management Necessary?
    • LogClarity® Executive Dashboard
    • LogClarity® Enterprise Dashboard
    • LogClarity® Increasing IT Efficiency
    • Why LogClarity® Suite?
  • System Solutions
• • LogClarity® Design Framework
  • Database Access Tracking
  • File Access Log Translation
• • Weekly Webcast Signup
  • Monthly Webcast Signup
  • Datasheets & Whitepapers
  • Press Releases
  • Upcoming Events
  • Industry Resources

Our product has been designed for real world scenarios and demands by security professionals in enterprise environments so you can find the event instantly with limited information you have available. The possibilities of scenarios of what you need to find in your security logs are endless. Our solution provides the framework for highly intuitive and powerful searches. Here are some examples:

Real World Scenarios

• Find events when a change has been made to a group policy object.
• Find events when a specific group policy got applied to an OU.
• Find where the object was deleted or moved from.
• Find events when a user account was locked out.
• Find events when a user edited the permissions of an object.
• Search by time scope.
• Search by description.
• Search by Event ID.
• Search by location.
• Search by old object names.
• Find events by the GUID of the object.
• Find events when a mailbox gets assigned to a user.
• Find events when a mailbox gets removed from a user.

Activity Logs - Real World Scenarios

• Find the events when any user has made changes to a specific object.
• Find the events when a specific user has made changes to any object.
• Find the events when a specific user has made changes to a specific object.
• Find the events when any user in a specific OU has made any changes to any object.
• Find the events when any user has made any changes to any object in a specific OU.
• Find the events when any user in a specific OU has made any changes to any objects in a specific OU.
• Find the events when a user object was created.
• Find the events when a user object was moved to another OU.
• Find the events when a user object was deleted.
• Find the events when a user has been added to a group.
• Find the events when a user has been removed from a group.
• Search events by type of object edited.
• Search events by attribute modified.

Logon Logs - Real World Scenarios

• Find all users who logged onto a specific computer.
• Find all users who failed to log onto a specific computer.
• Find all computers that a specific user has logged into.
• Find all computers that a specific user failed to log onto.
• Find the events when a specific user has logged onto a specific computer.
• Find the events when a specific user failed to log onto a specific computer.
• Find the events when users from a specific OU logged onto any computer.
• Find the events when users from a specific OU has failed to log onto any computer.
• Find the events when any user has logged onto any computers in a specific OU.
• Find the events when any user has failed to log onto any computer in a specific OU.
• Find the events when users from a specific OU has logged into any computers in a specific OU.
• Find the events when users from a specific OU has failed to log onto any computer in a specific OU.
• Search logons by IP Address.

A screenshot of Quick Search.  Just type in any information you have in one field, and click Go.  Filter out unrelated events quickly and easily with a click of a mouse using our revolutionary Smart Filter.

Quick Search is the most flexible way to search. You can specify: The name or guid of the user that made the change to the domain The name or guid of the object that was changed The name of the user that logged into the domain The name of the computer that was logged into by the user The IP Address that was logged by the logon event

A screenshot of Advanced Search demonstrating a search by specifying the location of edited objects (by OU), and the location of computers that were logged on to.

Advanced Search is the most powerful and efficient way to search by specifying any field in the log.  You can specify the location where the users logging into computers (or computer logged into) exists or the location where the objects were edited (or the location of users that edited objects).  On top of specifying the location of objects, you can search by specifying: The time scope Description Event ID Domain Target object type Attribute edited The name or guid of the user that made the changes to the domain The name or guid of the object that was changed The name of the user that logged into the domain The name of the computer that was logged into by the user The IP Address that was logged by the logon event

Search Knowledge Base

Privacy Statement

Copyright © 2006 Log Fidelity Corp.