The amount of security-related data stored across a network is immense for many organizations. Relating all this data to the information in Active Directory can be tricky and time consuming. This makes it difficult to know who has what rights and this can lead to undesirable situations and security risks. For this purpose specifically, Tools4ever has developed NTFS2DB. NTFS2DB seamlessly maps out access privileges in the file system and Active Directory. The reports provide you with quick insight into various pollution issues, which allows you to meet internal security policies and auditing requirements much more effectively. NTFS2DB is the quickest and easiest access control and security management solution currently on the market.
Examples of pollution issues that NTFS2DB will detect:
- direct access to a file/directory rather than access through a group membership;
- access to a file/directory through multiple group memberships;
- groups and user accounts that are no longer present in Active Directory;
- duplicate access privileges to a file/folder of a user or user group;
- access to files/directories through a local (file system) user account
Besides detecting and fixing pollution issues, NTFS2DB offers preventive features. For instance, it will automatically detect and report unauthorized changes.
How does it work
NTFS2DB performs a batch-by-batch scan of access privileges to the file server and Active Directory. The output is stored in a SQL database. Users can then generate reports and perform complex queries using the built-in library. It is also possible to compare two or more scans (snapshots). The output will show any changes in the security settings. The results can then be matched against a predefined scenario (e.g. RBAC).
Analysis and management of access privileges
Would you like to have a quick overview of which users have access to what? Or users who have direct access to a file or directory rather than access through a group membership? Or do you prefer an overview of folders/files with groups or users that are no longer present in Active Directory? All this and more is possible with NTFS2DB thanks to its advanced analysis capabilities. You can use the analysis results to effectively manage access privileges.
By default, NTFS2DB comes with a library of complex queries that you can use to generate reports, or you can use a third-party tools to build queries. In other words, the sky is the limit when it comes to creating reports. NTFS2DB uses an open-format database which means you can use various tools to build queries for your reporting needs.
Migrate & merge
You want to make a fresh start with the migration to a new file system, SharePoint or cloud. Would you like to maintain the security settings after a server migration? Or match the migrated access privileges against a baseline to ensure the migration has been accurate? All this is possible with NTFS2DB.
Prevent security incidents
NTFS2DB allows you to prevent security incidents. In addition to providing an overview of the various security settings for the file systems of IT assets such as Windows servers, SharePoint, Exchange, printers and file shares, the tool will notify you of any system changes.
Meeting 'segregation of duty' requirements
Audit trail and segregation of duty requirements can necessitate insight into security settings. NTFS2DB allows you to fulfill these demands.
NTFS2DB detects and reports unauthorized changes, thus preventing pollution of files and directories.
NTFS2DB provides the comprehensive insight that is necessary for a successful migration of file systems and server merges.
NNTFS2DB supports all versions of Windows and NTFS file systems, including Windows NAS.