Server Auditing Reports
Audit all logon events and record every failed logon attempt.
SysKit Monitor immediately detects security breaches and protects your system by automatically adjusting firewall rules.
Examine failed logons
Examine failed logons to your RDS Host to get all the relevant information you need to assess the threat.
In case of failed logons SysKit Monitor provides you with server name, account name, account domain, source workstation name and IP address.
Review restart log and system uptime
Every time a Windows Server restarts or shuts down SysKit Monitor will make a report entry. Track all events and determine why the server was restarted, which user initiated the restart, what caused the server to shut down or inform you how long a Microsoft Windows system has been running on a certain server without a reboot or restart.
The following logon and file system audit reports are available:
File and folder audit reports
Track every user activities on file system such as read, write, append, and delete actions.
Basically, know exactly who’s accessing and modifying sensitive data in your environment. All gathered data can be filtered by date range, servers, users, security groups.
Block security breaches by automatically adjusting firewall
Protect company servers from attacks and security breaches by detecting and blocking potentially malicious IP addresses. Blocking the IP address, in case of a number of failed attempts to connect, has proven to be more efficient than blocking the URL or domain name.