A family of security audit and benchmarking tools...

SekChek for Microsoft Active Directory

A family of audit and benchmarking tools...
SekChek for Windows (Active Directory)

SekChek supports the most common computer systems...

A SekChek for Active Directory security audit report provides...

View a sample SekChek for Active Directory report (PDF document)

View a sample audit report

Graphical summaries

Comparisons against your industry average and leading security practices
Answers to common questions about security
Comparisons of security over time

View a sample Active Directory summary report (PDF document)

Sample audit summary

An overall security rating

A summary document provides an overall rating of your security controls. Your security is compared against real-life averages in other organisations using Active Directory in your industry sector.

The document also highlights the most significant issues in your audit report.

Summary and detailed reports, security implications, recommendations

Audit Report Contents...

System Configuration
Domain Structure
Domain Accounts Policy
Domain Controller Audit Policy Settings
Domain Controller Event log Settings
Domain Controller Security Option Settings
Group Policy Objects, Links, Properties
Password Setting Objects (PSOs)
Customer-Selected Registry Key Values
User Accounts Defined In The Domain
Groups Defined In the Domain
Domain Local Groups and their Members
Domain Global Groups and their Members
Domain Universal Groups and Members
Last Logons, 30 Days and Older
Passwords, 30 Days and Older
Passwords that Never Expire
Accounts not Requiring a Password
Invalid Logon Attempts Greater than 3

Users not Allowed to Change Passwords
Accounts with Expiry Date
Disabled Accounts
Locked Out Accounts
Accounts - Passwords Must Change at Next Logon
User Accounts Created in the Last 90 Days
Rights and Privileges (Users, Groups)
Discretionary Access Controls (DACL) for Containers
Trusted and Trusting Domains
Servers and Workstations
Domain Controllers in the Domain
Accounts Allowed to Dial In through RAS
Services and Drivers on the Machine
Security Updates, Patches and Hot-Fixes
Current Network Connections
Logical Drives
Network Shares
Home Directories, Logon Scripts and Profiles
File Permissions and Auditing

All SekChek security reports have a similar look and feel, which saves you time. Once you are familiar with the layout of one report you can easily find your way around the reports for all other systems.

Audit tool options

Download SekChek Local software SekChek Classic and SekChek Local tools.

The Scan process consists of a small program that uses standard Microsoft API calls to Active Directory.

With SekChek Classic, the Scan software runs directly on a domain controller. The SekChek Local tool runs on a workstation and scans the target domain across the network.

Product Specification

Download product specification: SekChek Local for Active Directory View SekChek Local technical specifications (PDF document)

The technical specification document outlines the audit scope of the SekChek Local software and summarises the tool’s audit reports and analyses. The document also includes a detailed list of attributes analysed and a glossary of terms.

More information...

	SekChek for..




	Popular Downloads.. SekChek Classic SekChek Local Sample Reports Brochures



	Popular Links.. SekChek At-A-Glance Latest News Compare Tools Report Tour Free Tools Getting Started