Netwrix Auditor Information Reviews & Insights

Score8.5 out of 10

56 Reviews and Ratings

Community insights

TrustRadius Insights for Netwrix Auditor are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Helpful Notifications: Several users have found Netwrix Auditor's ability to send warnings to users about expiring passwords and notifications for multiple failed logons to be helpful in preventing lockouts, spotting suspicious activity, and assisting with password changes.

Flexible Customization: Many reviewers appreciate the flexibility provided by Netwrix Auditor's 'Search' function, which allows them to create custom notifications and reports. This feature enables users to monitor specific events and set up email reports tailored to their needs.

Useful Alerts: Users highly value the alerts provided by Netwrix Auditor as they aid in identifying account lockouts, uncovering firewall issues, and offering insights into various aspects of the environment. The alerts are seen as a valuable tool for monitoring and maintaining system security effectively.

Netwrix Auditor Reviews

2 Reviews

InformationTelecommunications2

Netwrix Auditor Review

Rating: 8 out of 10

Incentivized

April 23, 2020

Use Cases and Deployment Scope

Netwrix Auditor is used mainly by the Security department. However, we often pull information from Netwrix Auditor for other IT departments. It addresses problems relating to figuring out who made specific changes and security problems. Being able to view login failures, changes to users privileges, and so much more information helps us stay on top of things.

Pros

Provides accurate information
Easy to generate reports
Easy to filter, after initial learning curve

Cons

Challenging to learn filter options when first using the product
Not much video training provided online for the product
Could have better training available (additional guides, videos)

Likelihood to Recommend

Netwrix Auditor is great for reviewing events that occurred and tracking down the root cause of who/what made specific changes. It also works well for audits revolving around security and user accounts. The only situation I need to use a secondary product for is when I need to track down a specific IP or system. But that is only because of the licenses we have, if we purchased more we could get additional information out of the product.

Verified User

Analyst in Information Technology (Telecommunications company, 1001-5000 employees)

Vetted Review

1 year of experience

Netwrix Auditor, your super hero to the rescue

Rating: 9 out of 10

Incentivized

October 17, 2019

Use Cases and Deployment Scope

It is used by two departments, the User Department where I belong and the Security Team along with our Manager and CIO. It addresses auditing who did a change and what changes accounts are privileged do and can review a session of a user who logged into a server at maybe odd hours which could be suspicious.

Pros

Who has done the changes on systems
Password lockouts where it will tell you exactly where a person is locking which can be frustrating if it occurs too many times for one user.
It can show you things we rarely look at in our environment e.g on Active Directory things like duplicate group policy settings, empty security groups, computers which have not logged in in a long time thus helping you with your computer inventory.

Cons

Being able to get the actual device a user is locking in from Exchange Server because if a user is found to be locking out from an Exchange Server we have to look at Exchange Server IIS logs and parse through them using other tools like Log Parser looking for wrong password report. We need to use one product and that is Netwrix Auditor.
The software could also show when a server was restarted or rebooted.

Likelihood to Recommend

When there have been changes to server configuration (User Activity logs this too) you are able to tell who has done them and where the changes were made. It is less appropriate in situations where there is an email missing in one's mailbox and they claim mail has been deleted as this is not captured.

Junie Johwa

Senior Infrastructure Analyst in Information Technology at Mascom Wireless (Telecommunications, 201-500 employees)

Vetted Review

2 years of experience

Loading Reviews List....