Change monitoring and recovery for Azure AD Enterprise Applications and App registrations
Cayosoft Guardian now has a feature that allows you to monitor changes and recover data for Azure Enterprise Applications, App Registrations, Consents, and App role assignments and more. This feature enables you to keep track of any suspicious or unauthorized activities in the Azure AD environment, which helps to identify potential security threats quickly. Moreover, with alerting rules, you can automatically respond to such risks. By unifying changes in objects related to applications such as Consents, Cayosoft Guardian provides better insight into application security by transforming them into user-friendly changes of Enterprise Applications.
Automated product update
Cayosoft Guardian allows you to monitor any changes made to the authentication methods of users. This is especially important in the context of Azure AD and Multi-Factor Authentication. It helps you detect and respond to any unauthorized or suspicious changes in authentication information like phone numbers, email addresses, or security questions. This monitoring feature is crucial for maintaining the security and integrity of your authentication process.
Instant AD Forest Recovery in AWS (Patent Pending)
Amazon Web Services (AWS) is one of the most broadly adopted cloud platforms in the world. Now, backup plans can synchronize backup files to an Amazon S3 storage. Recovery plans can automatically create an isolated recovery sites on the AWS cloud platform with all required resources, such as virtual machines and network infrastructure providing the fastest full AD Forest Recovery on the market today. With Instant Recovery, there is always an up to date stand-by directory at the ready should the Forest fall victim to a ransomware or wiper cyberattack.
Instant AD Forest Recovery in Azure (Patent Pending)
Microsoft Azure one of the fastest growing platforms for infrastructure just behind AWS. Recovery plans can automatically create an isolated recovery sites on the AWS cloud platform with all required resources, such as virtual machines and network infrastructure providing the fastest full AD Forest Recovery on the market today. With Instant Recovery, there is always an up to date stand-by directory at the ready should the Forest fall victim to a ransomware or wiper cyberattack.
Threat Detection
AD configuration is complex and even a small misconfiguration can have significant security consequences. Attackers can exploit these misconfigurations to gain unauthorized access to the network or sensitive data. Guardian's threat detection capabilities now include the ability to scan the configuration of Active Directory to identify configurations or settings that pose a security risk.
Threat Signature Live Updates
Threat Signatures are files that contain information about new AD, Azure AD, or Office 365 threats. Updates are regularly released by Cayosoft to provide Guardian with the necessary information for the software to detect and respond to new threats. Similar to modern Anti-Virus programs, Threat Signatures are automatically updated periodically so that the level of protection provided by Guardian grows overtime.
Free Threat Summary Report
The Threats Summary Report includes all active threat alerts discovered by Cayosoft Guardian and overall threat statistics. The corresponding reporting job can be scheduled to generate and send the report via email or Teams on a regular basis.
Group Policy Change Monitoring & Rollback (v3)
Cayosoft Guardian v3 added change monitoring, creating backups, and performing recovery of Group Policy Objects down to individual GPO settings. Cayosoft Guardian tracks changes in all types of GPO settings. Change History view was improved to present changes in GPO settings and other complex data structures in a human-readable form.
Version |
ID | Item | Product Area |
---|---|---|---|
4.1.2 |
4668 7520 12748 |
Change monitoring and recovery for Azure AD Enterprise Applications and App registrations Cayosoft Guardian now offers change monitoring and recovery for Azure AD Enterprise Applications, App Registrations, Consents, and App role assignments. By auditing changes related to Enterprise applications, you can monitor for unauthorized or suspicious activity within the Azure AD environment and identify potential security threats, enabling quick automated responses with alerting rules to mitigate risks. To provide better visibility and insight into application security, Cayosoft Guardian unifies changes in application-related objects such as Consents and transforms them into user-friendly changes of Enterprise Applications. |
Azure Active Directory |
4.1.2 | 9944 |
Change monitoring and recovery of authentication methods set up by Azure AD users Cayosoft Guardian provides change monitoring of changes in the authentication methods of users. In the context of Azure AD and Multi-Factor Authentication, detecting and responding to any suspicious changes in authentication information, such as phone numbers, email addresses, or security questions is imperative. |
Azure Active Directory |
4.1.2 | 12801 |
Improved change monitoring of Azure AD Conditional Access Policies (CAP) Cayosoft Guardian now supports the recovery of Conditional Access policies using authentication strength. Authentication strength is a Conditional Access control that lets you define a specific combination of multifactor authentication methods that an external user must complete to access your resources. |
Azure Active Directory |
4.1.2 |
12727, 11753 |
Automated product update Now, Cayosoft Guardian supports built-in downloading and installing updates from the cloud. You can configure the timeframe for automatic updates or schedule each update manually. |
Service |
4.1.2 | 12792 |
New change categories in Change History We added more than 40 new categories in Cayosoft Guardian to provide users with better visibility of changes in connected systems. |
UX, Azure Active Directory, Active Directory
|
4.1.2 | 11677 | Cayosoft Guardian notifies you about available threat definition updates using a global alert. | UX |
4.1.2 | 12836 | An issue has been resolved when a recovery site without virtual machines could be created with a recovery plan. | Forest Recovery |
4.1.2 | 12814 | An issue has been resolved when the initiator of some changes in Named Locations could not be detected. |
Azure AD |
4.1.2 | 13002 | An issue has been resolved when the restoration of mailbox changes containing properties related to litigation hold failed with an error. | Exchange Online |
4.1.2 |
12571 12864 12817 12837 12878 |
Enhancements related to user experience, security, and performance Every release gives Cayosoft the chance to improve our products and services. These items fall into this category. |
UX, Security, Service |
Version |
ID | Item | Product Area |
---|---|---|---|
4.1.0 |
11076, 11525 |
Instant forest recovery with Amazon Web Services (AWS) Amazon Web Services (AWS) is one of the most broadly adopted cloud platforms in the world. Now, backup plans can synchronize backup files to an Amazon S3 storage. Recovery plans can automatically create recovery sites on the AWS cloud platform with all required resources, such as virtual machines and network infrastructure.
|
Active Directory, Instant Forest Recovery |
4.1.0 | 10150 |
Azure AD Connect cloud sync support - Azure AD Connect cloud sync is a new offering from Microsoft designed for the synchronization of users, groups, and contacts to Azure AD. Cayosoft Guardian automatically discovers the configuration of Azure AD Connect cloud sync and starts the synchronization process when the rollback job restores hybrid objects.
|
Hybrid |
4.1.0 | 10868 |
Threats Summary Report - The Threats Summary Report includes all active threat alerts discovered by Cayosoft Guardian and overall threat statistics. The corresponding reporting job can be scheduled to generate and send the report via email or Teams on a regular basis.
|
Threat detection, Reporting |
4.1.0 | 11577, 11539, 11530, 11491 |
GPO backup and recovery enhancements - To simplify undelete of Group Policy Objects (GPO) in the Active Directory, Cayosoft Guardian can automatically detect and restore all related changes in both Active Directory and GPO files. Also, Cayosoft Guardian now supports additional GPO recovery scenarios, such as script settings and GPO preferences recovery.
|
Active Directory, Group Policy Objects |
4.1.0 | 11558 |
Performance enhancements for SQL databases - Cayosoft Guardian now uses a columnstore index technology to reduce overall database size and increase query performance. A columnstore index is a technology for storing, retrieving, and managing data by using a columnar data format, called a columnstore. Columnstore indexes are the standard for storing and querying large data warehousing fact tables. This index uses column-based data storage and query processing to achieve gains up to 10 times the query performance in your data warehouse over traditional row-oriented storage. You can also achieve gains up to 10 times the data compression over the uncompressed data size. IMPORTANT: An upgrade to Cayosoft Guardian 4.x from version 3.x might take up to several hours due to the changes in the database structure.
IMPORTANT: Cayosoft Guardian 4.x no longer supports legacy versions of SQL Server and some limited configurations of Azure SQL. If you use Cayosoft Guardian with the unsupported database configuration, after upgrade you will see an alert. We strongly recommend you to migrate to the supported configuration to receive all benefits brought by the columnstore index technology. Check system requirements to find supported configurations.
|
Service |
4.1.0 | 11539 |
Automation for recovery of containers in the Active directory - To simplify undeletes of containers, such as organizational units, Cayosoft Guardian can automatically detect related changes of child objects within a hierarchical structure and restore all these related changes.
|
Active Directory, Undelete |
4.1.0 | 11608 |
Automation of the DNS configuration in recovery plans - Cayosoft Guardian now automatically configures recovery plans to include addresses of specific DNS forwarders for recovery sites in the cloud. Domain controllers use these addresses to access cloud services during the forest recovery process.
|
Forest Recovery, Active Directory |
4.1.0 | 11312 |
Initial configuration wizard - After installation, Cayosoft Guardian offers quick access to essential configuration tasks, including license activation, database configuration, and connecting managed systems.
|
UX |
4.1.0 | 11606 |
An issue was resolved when the backup discovery process might fail if an Active Directory metadata size in the backup files exceeds a specific size.
|
Active Directory |
4.1.0 | 11378 |
An issue was resolved when Cayosoft Guardian generates a change history record related to an active role assignment, even though there are no changes in role membership in Azure AD.
|
Service, Azure AD |
4.1.0 | 11413 |
An issue was resolved when the threat detection job finished with success status, even though threat detection failed in some connected systems.
|
Service, Threat Detection |
4.1.0 | 11548 |
An issue was resolved when Cayosoft Guardian service might consume all available RAM memory if the Teams collection job is running.
|
Service, Teams |
4.1.1 |
11713 |
An issue was resolved when the creation of a custom saved query might fail with an error.
|
UI/UX |
4.1.0 |
11687, 11678, 11268, 11364, 11421, 11489 |
Minor UI and UX improvements. | UI/UX |
Comments
0 comments
Article is closed for comments.