|
1 | | -# Change Tracker |
| 1 | +--- |
| 2 | +title: "Netwrix Change Tracker v8.1 Documentation" |
| 3 | +description: "Netwrix Change Tracker v8.1 Documentation" |
| 4 | +sidebar_position: 1 |
| 5 | +--- |
| 6 | + |
| 7 | +# Netwrix Change Tracker v8.1 Documentation |
| 8 | + |
| 9 | +Netwrix Change Tracker is a system integrity monitoring product, used for compliance programs, host |
| 10 | +intrusion detection and change control for enterprise IT systems. It is used by Enterprise IT |
| 11 | +organizations including the military, federal, banks, financial services, airlines, retailers, |
| 12 | +utilities and not-for-profit organizations globally. |
| 13 | + |
| 14 | +The product automates the collection of configuration data from any IT devices, including Servers |
| 15 | +and Desktops, database systems, firewalls, network routers and switches and stores a baseline for |
| 16 | +each device. Platforms supported include Windows, Linux, Unix, Oracle, SQL Server. |
| 17 | + |
| 18 | +Configuration data collected is then analyzed for compliance with an organizations hardened build |
| 19 | +standard. This is typically based on a CIS Benchmark hardening checklist or one provided by a |
| 20 | +manufacturer such as Microsoft, Red Hat, Oracle or Cisco, for example. Compliance standards |
| 21 | +supported by Change Tracker include PCI DSS, DISA STIG, NERC CIP, ISO 27001, GLBA), FISMA), HIPAA |
| 22 | +HITECH, S-OX, NIST 800-53/171 and GPG 13. |
| 23 | + |
| 24 | + |
| 25 | + |
| 26 | +Devices are then monitored continuously using either a Change Tracker Agent installed directly onto |
| 27 | +the device, or using a periodically scheduled agentless interaction with the device. Any changes |
| 28 | +recorded deviating from the initial baseline are assessed for a match with Planned Changes |
| 29 | +configured in the Change Tracker system. Planned Change rules can be recorded directly from a device |
| 30 | +exhibiting changes, for example, when pre-staging patches, or from observed changes reported by |
| 31 | +Change Tracker. Planned Changes comprise the devices to assess, change window and details of the |
| 32 | +changes to match, such as a file change or registry value, for example. |
| 33 | + |
| 34 | +This _Closed-Loop\*\*_,\*\* Intelligent Change Controlclosely aligns to COBIT or ITIL Change Control |
| 35 | +processes whereby changes are pre-approved via a ‘Request For Change’ process, then reviewed for |
| 36 | +accuracy and quality via a QA Testing or Post-implementation review. Netwrix offer a ServiceNow |
| 37 | +Certified ITSM Integration Module to automatically pull in Change Requests from most leading ITSM |
| 38 | +products. In this way, Change Tracker automates the entire process by reviewing changes observed |
| 39 | +against pre-defined Planned Change rules, or by retrospectively building new Planned Change Rules |
| 40 | +based on observed changes, hence the Closed-Loop terminology. |
| 41 | + |
| 42 | +Any changes recorded that are not matched by a Planned Change rule are reported as being potentially |
| 43 | +breach activity. In this way, Change Tracker provides a Host Intrusion Detection System capability. |
| 44 | + |
| 45 | +Netwrix Change Tracker have been awarded Security Software Certification for CIS Benchmarks. |
| 46 | + |
| 47 | +Other Netwrix products have also received several rewards including a series of Five Star reviews |
| 48 | +from SC Magazine and a Winners Award from Computer Defense Magazine. Netwrix is also an official |
| 49 | +OVAL Adopter utilizing OVAL vulnerability and inventory and compliance content in either SCAP or |
| 50 | +xccdf content. |
| 51 | + |
| 52 | +## Solution Architecture |
| 53 | + |
| 54 | +Netwrix Change Tracker is delivered as a 100% software solution. The central server component can be |
| 55 | +installed on either a Windows or Linux platform. A virtual host is supported but resources, and in |
| 56 | +particular disk I/O performance, are critical. For more information please see: |
| 57 | + |
| 58 | +- [Installing Gen 7 Agent for Windows](/docs/changetracker/8.1/install/agent/windows.md) |
| 59 | +- [Installing Gen 7 Agent for Linux](/docs/changetracker/8.1/install/agent/linuxos.md) |
| 60 | + |
| 61 | + |
| 62 | + |
| 63 | +For a full list of supported operating systems see |
| 64 | +[OS Support Matrix](/docs/changetracker/8.1/requirements/ossupportmatrix.md). |
| 65 | + |
| 66 | +Administration and everyday usage for reporting on the change history of a device and managing |
| 67 | +planned changes is all provided via the secure web interface. Integration options include alert |
| 68 | +propagation via syslog and email, and for more advanced, two-way integration, Netwrix Change Tracker |
| 69 | +provides a REST API. |
| 70 | + |
| 71 | +- Windows Servers and Workstations are tracked using a locally installed active Agent; |
| 72 | +- Solaris, Ubuntu, SUSE Linux, RedHat and CentOS hosts can also be tracked using an Agent; |
| 73 | +- Legacy Unix systems are monitored for File Integrity changes using the Express Agent; |
| 74 | +- Network devices, Unix and Linux Servers are also tracked using an agentless, scripted interaction |
| 75 | + executed automatically from the Change Tracker server or using a Proxy Agent function; |
| 76 | +- Detailed Configuration Policy management for Servers and Workstations and Policy Compliance |
| 77 | + Reporting is performed via Change Tracker Hub. |
0 commit comments