Related Links
Summary of SOX Act
The text of the lawsarbanes-oxley.comFortefi Compliance Auditor: Overview
Fortefi Compliance Auditor is a reporting tool designed for auditors and administrators working in regulated environments.
Legislation places increasing demands on companies to maintain audit trails of system transactions and user activity. Many applications provide raw log data from which auditors have to periodically pull pre-defined event quantities to create permanent audit records but often this leaves organizations with hundreds of thousands of records to collect and filter.
The Fortefi Framework generates many detailed logs on UNIX user activity, provisioning, access control and password reset events, but using the included Fortefi Compliance Auditor, filtered audit events can pulled on schedule into a comprehensive interface that enables auditors to view security transactions, play back recordings of user activity, and record notes.
AUTOMATIC DATA COLLECTION |
||
 |
Preset numbers of records can be pulled from the audit database at hourly, daily, weekly or monthly schedules. |
|
|
Roles can be assigned to each rule to ensure auditors or administrators are only able to view extracted records with a matching role in their user account. |
|
|
Specific filtering criteria can be used in rules such as audit record type for Self Service; or username, host and command for Command Control. |
|
|
Filtering rules by command allows administrators to focus on important events |
|
COMPREHENSIVE AUDITING |
||
|
Records are displayed in an easy to read tabular format, and may be filtered by any combination of date or status. |
|
|
Before any record is edited, the system requires that the auditor locks the record. Each change is recorded in an indelible audit trail within each record. |
|
|
If system activity has been recorded, the auditor can replay all keystroke events for the user using VCR-like controls to navigate. Multiple playback speeds are available. |
|
|
The auditor can record a status of Pass, Fail, or Raise against each record together with any notes. Each change is added to the audit trail for the record. |
|
Quotes
White Papers
Command Control
