Active Directory Bundle
ExtraHop Reveal(x) versions 9.0 and above include this data in the Active Directory system dashboard.
Download the latest Reveal(x) firmware
Description
Active Directory is a powerful and complex tool for your network, but complex tools need monitoring and repair, too. This bundle provides triggers that build real-time metrics for the following Active Directory services: user accounts, computer accounts, DNS, LDAP, global catalog, and group policy loads. The bundle also includes dashboards, alerts, and record queries to help you track Active Directory activity.
The bundle includes:
- Record drill-downs for LDAP and Kerberos metrics
- Distinct metrics to track unique Kerberos usernames and machine names
- Last observed user account and associated machine account for each observed IP
