Change Guardian provides an integration framework for AD or IDM to track identities of each user account and what events those identities have performed.
This integration provides functionality on several levels:
The People Browser provides the ability to look up the following information about a user:
Contact information
Accounts associated with that user
Most recent authentication events
Most recent access events
Most recent permissions changes
The People Browser also lets you do a lookup from events.
Reports and Correlation rules provide an integrated view of a user's true identity, even across multiple systems on which the user has separate accounts. For example, accounts like COMPANY\testuser; > cn=testuser,ou=engineering,o=company, and TUser@company.com can be mapped to the actual person who owns the accounts.
By displaying information about the people initiating a given action or people affected by an action, incident response times are improved and behavior-based analysis is enabled.
NOTE:Only administrators can integrate Change Guardian with identity management systems. For more information, see [TBD]