PowerBroker Auditor for Active Directory:
Change Control and Compliance Reporting

Pinpoint the "who, what, when and where" behind changes to Active Directory without the operational impacts of native auditing.

Unmatched, Real-Time Change Control for Active Directory

PowerBroker Auditor for Active Directory meets PCI, SOX, HIPAA and other compliance requirements for auditing and alerting Active Directory configuration changes. You can easily pinpoint changes that introduce security risks, jeopardize compliance, or reduce operational efficiency via the solution’s real-time tracking of:

  • Who performed each change
  • What changed (including pre/post values)
  • When the change occurred
  • Where the change was made

The solution's centralized database enables both auditing and recovery, delivering a broader set of capabilities than native AD auditing – without the operational impacts. Add PowerBroker Recovery for Active Directory, and you have a continuous backup technology that enables you to both detect and roll back changes.

Watch Video: PowerBroker Recovery for Active Directory enables you to quickly and easily roll back changes to AD

Learn how PowerBroker Auditor for Active Directory reveals the
"who, what, when and where" behind changes to AD

“The PowerBroker Management Suite is a formidable set of tools for administrators dealing with Microsoft-centric technologies.” KuppingerCole

License Exchange Program For Quest®/Dell & Netiq Customers

Endpoint Security

BeyondTrust will offer current Quest/Dell (which includes former NetPro) and NetIQ licensees the opportunity to exchange their auditing, recovery, and event log management software licenses for BeyondTrust PowerBroker Auditor (formerly known as the Blackbird Management Suite) licenses on a seat-for-seat basis.


Integration of Audit and Recovery

PowerBroker Auditor for Active Directory provides a single-click option to rollback or recover an object or attribute that was changed. These tasks leverage the audit database to undo the inappropriate or unwanted changes.

Continuous Recovery

Traditional recovery solutions typically rely on scheduled backups to perform recovery operations. While our PowerBroker Recovery solution can recover from a scheduled backup, our deep integration with the PowerBroker Auditor also enables customers to perform continuous recovery. Rollback or undelete objects at any point in time to ensure zero data loss.

Real-time Active Directory Auditing

Auditing using native windows event logs is difficult and cumbersome. Our solution provides the centralized and real-time auditing needed to identify changes that can impact the security of your environment.

Real-time Alerting

In a distributed enterprise environment the ability to get centralized real-time audited data can be a daunting task. The PowerBroker Auditor solutions audits, alerts, and report on all changes made in Active Directory, Exchange, Windows file Server, and SQL environment in a centralized real-time audit console, without the need native audit logs.

Integration with Native Management Tools

By integrating PowerBroker Auditor with native management tools such as Active Directory Users and Computers, Sites and Services, ADSI Edit and others, admins can quickly view an audit history for selected item or view all audited activities performed by a user.

No requirement for Native Auditing

Auditor for Active Directory does not require any GPO changes or native System Access Control Lists to be managed or defined. Customers that need to leverage native auditing using Microsoft ACS also deploy PowerBroker Auditor for Active Directory to narrow the search for which audit log contains the needed information.


Our Active Directory solutions can easily scale up to any size environment, even if your organization has millions of users and thousands of servers spread across the globe.

Ease of Deployment

By way of our modular architecture, one centralized database for all activity, one agent, and one console mean deployments are fast and trouble-free.

Why BeyondTrust for Active Directory Security and Compliance

  • The ability to track the who, what, where, and when for every change
  • The ability to track before/after value tracking for every change
  • Real time Active Directory change auditing
  • Intuitive wizards for custom views and reports
  • Leverage audit information to assist with object recovery and rollback
  • Tighter security and audit procedures
  • Built-in library of security and compliance reports
  • A central audit database for reporting and alerting against all change activity
PowerBroker Auditor for Active Directory

Related Products

To learn more about our products for securing your environment, select a product area below:

PowerBroker Auditorfor File System

The enterprise alternative for native file system auditing

PowerBroker Recoveryfor Active Directory

Advanced Continuous Data Protection for Active Directory, providing unparalleled visibility and change control

PowerBroker Identity Services

Quickly and easily integrate your Linux and Unix servers into your Active Directory Infrastructure


  • Auditing and Recovery
    Auditing and Recovery
  • File System Introduction
    File System Introduction
  • GPO Side by Side Comparison
    GPO Side by Side Comparison

  • Management Tool Integration
    Management Tool Integration
  • Non-Owner Mailbox Auditing
    Non-Owner Mailbox Auditing
  • Object Recovery and Rollback
    Object Recovery and Rollback