Features enhancements in ADChangeTracker v2.4

A new version of Active Directory Change Tracker, v2.4 has been released recently with additions like Events Reports.

Given below are details of these features.

About Events Reports:

The new Event Reports feature enables the user to report the events data for recent AD object changes (Created, Modified and Deleted objects), User logon/logoff activities, Password change activities and Terminal Services activities (User connected and disconnected from the session) from the occurrence of specific Event ID(s) in Security Event log of the domain controller. This feature is powered by ADCT Listener Service. ADCT Listener Service collects the events data that occurred over a time period and stored in the application’s Events History database. You can report events data by specifying the timestamp, domain, change type, category and field based filter query.

User Logon/Logoff Reports

User logon/logoff reports in AD Change Tracker allows you to report the Events data for User logon/logoff activities in a domain controller that occurred over a time period and stored in the application’s Events History database.

You can generate the User logon/logoff reports with valuable information like ‘User Name’, ‘Workstation Name’ and ‘Logon Type’.

Event ID Configuration

To generate the User Logon/Logoff Reports, the following Event ID(s) 4624 and 4634 must be configured in ADChangeTracker application for Security Event log data collection.

Event ID Configuration

Report Selection

You can generate the User Logon/Logoff Reports by specifying the Date range, Domains, Category and field based filter criteria.

Report Selection

User Logon/Logoff Reports:

This report shows the User logon/logoff activities of a particular User in last 30 days.

User Logon/Logoff Reports

Password Change Reports

Password Change Reports in ADChangeTracker allows the user to report events data for Password Change activities in Active Directory that occurred over a time period and stored in the application’s Events History database.

You can generate the Password Change Reports with valuable information like When and Who made the changes for Password change activities in Active Directory.

Event ID Configuration

To generate the Password Change Reports, the following Event ID 4724 must be configured in ADChangeTracker application for Security Event log data collection.

Event ID Configuration

Report Selection

You can generate the Password Change Reports by specifying the Date range, Domains, Category and field based filter criteria.

Report Selection

Password Change Reports

This report shows the Password Change activities in Active Directory that occurred in last 30 days.
Password Change activities in Active Directory

For further information on this update and how you can use ADCT 2.4 for your Active Directory auditing and monitoring needs, please visit –
http://www.vyapin.com/products/active-directory-change-tracking/active-directory-change-reporting