Armstrong logo

NetWrix Auditor

Detect security threats, prove compliance and increase IT team efficiency

Organisations, of every size or industry, are recognising the importance of performing regular internal and external IT audits.  IT auditing helps you improve security, pass compliance audits and streamline IT operations, but all too often, the process is complex, cumbersome and time-consuming.

Netwrix Auditor software can ease this burden and ensure you achieve your goals easily.

NetWrix Auditor menu

Audit your most important IT systems from a centralised platform

Juggling multiple auditing and reporting tools in an attempt to collect audit information from all your on-premises and cloud-based systems is very time consuming.  You need a software solution that delivers that information in a unified and consistent way.  Netwrix Auditor provides a consolidated audit trail across numerous IT systems, including Active Directory, Windows Server, Oracle Database and network devices.

Netwrix Auditor Active Directory

Active Directory

Netwrix Auditor for Active Directory delivers security intelligence about what’s going on in Active Directory and Group Policy.  Audit Active Directory changes and logons to mitigate the risk of privilege abuse, prove IT compliance and streamline troubleshooting.

Azure AD

Azure Active Directory Auditing and Reporting Get actionable audit data about all changes and logons in your Azure Active Directory.  Netwrix Auditor for Azure AD enables you to quickly detect and investigate incidents that threaten your cloud security or could cause downtime.

Netwrix Auditor for Office 365

Office 365

Netwrix Auditor for Office 365 delivers complete visibility into the hosted Exchange component of Microsoft Office 365, helping you mitigate Office 365 security risks.  The application tracks and reports on administrative changes made to your Exchange Online organization.


Netwrix Auditor for Exchange delivers complete visibility into your Microsoft Exchange infrastructure by monitoring all changes made to Exchange server configuration, Exchange databases, mailboxes, mailbox delegation, and permissions, including changes to public folder permissions.


Netwrix Auditor for SharePoint delivers security intelligence about what’s going on in your SharePoint environment.  See who has access to what and track changes to farm configuration, groups, permissions and user content, as well as document reads, to mitigate the risk of data leaks.

Nutanix Files

Nutanix Files

Windows File Servers

Netwrix Auditor for Windows File Servers delivers complete visibility into everything happening on your file servers.  It provides actionable audit data about all changes made to files, folders, shares and permissions; reports on both successful and failed access attempts.


Netwrix Auditor for NetApp provides complete visibility into everything going on in your file storage.  The application delivers granular audit data with deep insights into changes to files, folders, shares and permissions, and it reports on both successful and failed access attempts.

Dell EMC

Netwrix Auditor for EMC audits EMC Isilon, VNX, VNXe and Celerra storage devices to help enterprises strengthen data security, streamline compliance and increase operational efficiency.  It enables complete visibility into storage environment by tracking all changes to files, folders, shares and per.

Netwrix Auditor Module for Oracle Database

Oracle Database

Netwrix Auditor for Oracle Database complete visibility into changes and access in Oracle Database

SQL Server

Netwrix Auditor for SQL Server delivers complete visibility into your Microsoft SQL environment by tracking and reporting on changes made to SQL Server objects and permissions, including server instances, roles, databases, tables, stored procedures and more.  

Windows Server

Windows Server

Netwrix Auditor for Windows Server delivers complete visibility into Windows-based server infrastructures.  It detects and reports on all changes made to server configuration hardware and software, services, applications, network settings, registry settings, DNS, and more.

Network Devices

Netwrix Auditor for Network Devices delivers complete visibility into Cisco and Fortinet device configuration changes, and both successful and failed attempts to log on to switches, routers and firewalls.


Netwrix Auditor for VMware delivers complete visibility into changes on VMware vSphere and its components, including standalone ESXi hosts.  Perform regular VMware audits to harden security, prove IT compliance and optimize operations.


Security Intelligence

Netwrix Auditor bridges the visibility gap by delivering security intelligence about critical changes, data access and configurations in hybrid IT environments.  The platform identifies users with the most anomalous activity, alerts on behavior patterns that indicate a possible threat, and makes it easy to investigate any suspicious action or security policy violation so you can quickly determine the best response.

Discover, classify and secure sensitive data

Identify file shares and specific folders that contain sensitive files so you can prioritise the security of these assets.  Ensure that only authorised personnel can view, edit, share or delete these files; carefully monitor activity that might jeopardise the security of this information; and detect any sensitive data surfaces outside of a secure location.

Continuously assess and mitigate data security risks

Identify high-risk configurations, such as excessive access permissions for the “Everyone” group or an abundance of directly assigned permissions, that need your immediate attention.  Adjust your policy settings or permissions as necessary to minimize the ability of intruders and insiders to cause damage.

Prevent privilege abuse and data breaches

Get a complete picture of effective user permissions in Active Directory and file servers.  Lock down overexposed data and make sure that only eligible employees have access to critical resources.  Stay aware of any modifications that affect user privileges so you can respond immediately.

A bird’s-eye view of activity across your IT environment

Get a high-level view of what’s going on in your hybrid IT infrastructure with enterprise overview dashboards.  Spot surges in anomalous activity, see which user are most active and which systems are most affected.

Failed Activity Trends

Quickly identify subtle signs of possible threats, such as unusual logons that might indicate user identity theft or a disgruntled privileged user trying to hide his or her activity behind temporary accounts.  With the user behavior and blind spot analysis reports, no malicious activity can slip under your radar.

Receive alerts on threat patterns

Be alerted about unauthorised activity as it happens so you can prevent security breaches.  For example, you can choose to be notified whenever someone is added to the Enterprise Admins group or a user has modified many files in a short period of time, which could indicate a ransomware attack.

Centralise IT security monitoring with API-enabled integrations

Centralise security monitoring and reporting by feeding Netwrix Auditor data from other on-premises or cloud applications.  You can also use the actionable security intelligence from Netwrix Auditor to augment the output data of your SIEM solution.

Archive security analytics data for years

The two-tiered (file-based + SQL database) AuditArchive™ storage enables you to keep your audit data archived for historic e-discovery or security investigations for more than 10 years.

Small Person

Interested in NetWrix Auditor?

Book a Demo

If you would like a one on one session with our engineer, who will discuss your needs and demonstrate NetWrix Auditor via remote session, please select this option.

Book it!

Evaluate yourself

If you've already had a demo from us and are ready for the next step or you simply prefer to try things yourself, then this is the option for you.

Try it!

Let us Call you

If you'd like to have a chat with us about NetWrix Auditor, please select this option.   If you'd prefer to email or phone us, our details are also here.

Request it!