GFI EventsManager

Real-time alerts, SNMPv2 traps alerting Included
The latest build of GFI EventsManager™ has improved alert level for key events or intrusions that are detected on the network. GFI EventsManager allows you to trigger actions such as scripts or to send an alert to one or more people by email, network messages, SMS notifications sent through an email-to-SMS gateway or service and now includes SNMPv2 traps. The generation of SNMP alerts will also allow administrators to integrate GFI EventsManager with pre-existing or generic monitoring mechanisms.

Installation and Usability
GFI EventsManager has been optimized to provide users with an improved installation process. Some of the changes include optimization of various run parts of the product, updated installation documentation, new quick start guides to help you add event sources, create rules and work with database operations faster and more efficiently as well as the ability to download and install the ReportPack™ from the report page. The ReportPack also contains reports specific to Payment Cards Industry (PCI) Standard.

View Reports on Key Security Information Happening on Your Network
GFI EventsManager reporter, which ships with the product, allows you to create or customize reports, including standard reports, such as:

• Payment Card Industry (PCI) reports
• Account Usage Reports
• Account Management Reports
• Policy Changes Reports
• Object Access Reports
• Application Management Reports
• Print Server Reports
• Windows Event Log System Reports
• Events Trend Reports

Centralized Event Logging
Event logs are constantly and automatically generated by a user or by an automatic or background process. Logs are often stored in disparate locations. GFI EventsManager stores all captured event logs into one SQL database that may even reside remotely. Through GFI EventsManager you can configure scheduled backups of your event logs.

Analysis of Event Logs including SNMP Traps, Windows Event logs, W3C logs and Syslog
As a network administrator, you have experienced the cryptic and voluminous logs that make log analysis a daunting process. GFI EventsManager is a log processing solution that provides network-wide control and management of Windows event logs, W3C logs, and Syslog events generated by your network sources. GFI EventsManager now supports Simple Network Management Protocol version 3 which is the language spoken by low level devices such as routers, sensors, firewalls, etc. Through SNMP users can now monitor a whole range of hardware devices on their infrastructure and gain the ability to report on the health and operational status of each device.

Certified for Windows Server 2008; Supports Vista
GFI EventsManager has achieved ‘Certified for Windows Server 2008’ status and can be installed on, and collect events from Windows Vista and Windows 2008. Although these new platforms use a different log format, GFI EventsManager presents events from various operating systems in the same manner, thus allowing the user to see a common structure, regardless of the platform being monitored. GFI EventsManager also supports Windows 2000, Windows XP and Windows 2003.

Deeper Granular Control of Events
GFI EventsManager helps you monitor a wider range of systems and devices through the centralized logging and analysis of various log types including Windows events, Syslog, W3C and now SNMP traps that are generated by network resources. Administrators can gather information from Windows machines and third-party devices at a greater level of granularity and process information at extended tags level, basing the decision of what to do with that information on the spot, without further information management.

Support for New Devices
Managing SNMP Trap for myriad devices requires the ability to understand the language each manufacturer uses to define events. These definitions and the device information are contained in Management Information Base (MIB) definition files, provided by the manufacturers. GFI EventsManager ships with MIB definitions for the following vendors: Cisco, 3Com, IBM, HP, Check Point, Alcatel, Dell, Netgear, SonicWall, Juniper Networks, Arbor Networks, Oracle, Symantec, Allied Telesis and others. GFI EventsManager is capable of importing the MIB files of new devices as soon as they become available.

SQL Server Auditing
GFI EventsManager now supports SQL server auditing for all commercial and free versions of SQL Server including 2000, 2005, 2008, MSDE and SQL Express. Auditing allows the user to track and report on SQL server activity such as: Running of SQL statements, altering DB tables, attempts to access data without necessary privileges, etc. This can ensure data in SQL servers is authentic and thus reliable.

Translates Cryptic Windows Events
Cryptic logs make log analysis a painful and lengthy process. GFI EventsManager translates those event descriptions to clear, concise explanations and suggestions for action.

High Performance Scanning Engine
GFI EventsManager incorporates a totally redesigned event scanning engine that is fine tuned for maximum scanning performance. Tests demonstrate that our engine is able to scan and collect up to 6 million events per hour. Its plug-in based methodology allows additional features and modules to be integrated without interfering with existing code.

Collect Events Data Distributed Over a WAN into One Central Database
You can collect events data from GFI EventsManager installations on multiple sites and locations across your network into one central database using the Database Operations functionality. This enables you to easily monitor thousands of workstations and servers across the network without impacting bandwidth and storage use. It integrates and centralizes events collected and processed and allows you to backup and restore events on demand. Through database operations you can manage the size of the database – without the need for manual intervention – not only by centralization but by also being able to export events and back them up as needed.

Rule-based Event Log Management
GFI EventsManager ships with a pre-configured set of log processing rules that allow you to filter and classify events that satisfy particular conditions. You can either run these default rules without performing any configuration, or you can choose to customize these rules and create tailored ones that suite your network infrastructure.

Advanced Event Filtering Features
GFI EventsManager’s powerful filtering sifts through recorded event logs allowing you to browse without deleting any records from your database backend. You may also selectively highlight specific events using a color or the integrated event finder tool.

Event Log Scanning Profiles
Scanning profiles allow you to configure the set of event log monitoring rules that will be applied to a specific computer or to a group of computers. Profiles provide a centralized way of tuning event log processing rules. You can, for example, set up a set of rules that only apply to workstations in a particular department. Or you might create separate complementary profiles that provide additional and more specialized event log rules on a computer by computer basis.

Helps You to Comply with PCI DSS and Other Regulations
Starting in September 2007 all businesses handling cardholder data, regardless of size, must be fully compliant with strict security standards drawn up by the world’s major credit card companies. Data logging is key to meeting PCI DSS requirements. Logs provide audit trails of all activities in a credit card holder data environment and hence, a comprehensive log management system, such as GFI EventsManager, is what you need to be PCI DSS compliant.

Support for Virtual Environments
Organizations that are currently using or plan to use virtualization on their network can still install and use a range of GFI products with confidence. GFI EventsManager supports and runs on the most common virtualization technologies in use, namely VMware, Microsoft Virtual Server and Microsoft Hyper-V.

Other Features:

• Remove “noise” or trivial events that make up a large ratio of all security events
• Real-time 24 x 7 x 365 day monitoring and alerting
• Graphic monitoring of the status of GFI EventsManager and your network through the built-in status monitor
• Report scheduling and automated distribution via email

You're in Great Company...
Many leading companies have chosen GFI EventsManager. Here are just a few: Primerica, Pepsico France, Royal & Sunalliance USA Inc., ATP, Ceridian Canada and many more.

GFI EventsManager работи при описаните по-долу системни изисквания.
Моля, свържете се с нас, ако имате нужда от повече информация.

Компютърен хардуер

Операционни системи

GFI EventsManager е съвместим със следните операционни системи:

• MS Windows XP
• MS Windows XP x64
• MS Windows Vista
• MS Windows Vista x64
• MS Windows 2000 Server
• MS Windows 2003 Server
• MS Windows 2003 Server x64
• MS Windows 2008 Server
• MS Windows 2008 Server x64

Езици

GFI EventsManager е преведен на следните езици:

• Английски

Други необходими компоненти

• .NET Framework 2.0
• Microsoft Data Access Components (MDAC) 2.8+ или по-нова версия
• Microsoft SQL Server 2000 или по-нов (включително достъп до Microsoft SQL Server Native Client, SQL Server Management Objects с компоненти SQL Profiler)

Допълнителни софтуерни изисквания към сканираните машини

При сканиране на файловете със записи на събитията в Microsoft Windows:

• Трябва да е активирана услугата Remote registry.
• Услугата за одитиране в Windows трябва да е активирана.
• Машините под Vista трябва да бъдат в един и същи домейн, както и сървърът за сканиране, като трябва да е изключен User Account Control (UAC)

При сканиране на файловете със записи на събития W3C:

• Папките източник трябва да бъдат достъпни чрез дяловете на Windows.
• Syslog (системни записи на събития) и SNMP съобщения: Източниците /подателите трябва да бъдат настроени да изпращат съобщения към компютър /IP адрес, където е инсталиран GFI EventsManager.

Изпробвайте GFI EventsManager безплатно!

• GFI EventsManager може да се изтегли като безплатна пробна версия - Поискайте я сега!

Допълнителна информация за GFI EventsManager

Ние осигуряваме поддръжка на първо ниво при продажбите и техническата поддръжка на GFI EventsManager. При нужда предвижваме заявките и към отдела за поддръжка на производителя.

• Искате още информация за GFI EventsManager? - Свържете се с нас!
• Вече имате GFI EventsManager, но е възникнал технически проблем? - Получете техническа поддръжка!

Останете в постоянна връзка с нас

• Абонирайте се за новини по имейл (обикновено до 2 пъти месечно)
• Абонирайте се за новини по RSS
• Последвайте ни в Twitter
• Присъединете се към групата ни във Facebook

Поръчайте от дилър в страната

Поръчайте веднага от онлайн магазин

* Всички цени са в лева с включен ДДС.

Моля, свържете се с нас при нужда от по-големи количества или за да поръчате като дилър.