|
Tripwire Enterprise delivers immediate value to an organization through automated configuration assessment of IT infrastructure against regulatory, security, and operational policies— even against policies for virtual environments. Tripwire also offers continuous change auditing to detect improper change, and provides remediation assistance. With Tripwire, organizations can automate compliance, mitigate risks, and increase operational efficiencies by enforcing internal policies and ensuring compliance with external industry standards.
Tripwire Enterprise delivers value quickly in three simple steps:
Configuration Assessment: Tripwire Enterprise proactively assesses current configuration settings against established internal policies and external industry benchmarks. The assessment produces a quantified enterprise-wide risk profile that allows organizations to address vulnerabilities one-by-one across the IT infrastructure until the organization moves into a known and trusted state.
Tripwire Enterprise helps you achieve and maintain a known, trusted and compliant state across the IT infrastructure with this four-step process:
- It begins with a scan of your environment’s configurations, providing you with a baseline of your entire IT infrastructure
- Tripwire Enterprise then provides an analysis of the difference between your known state and a good or compliant state, giving you the information you need to improve your systems to meet this ideal
- From this point forward, it detects all change as it happens, without the need to scan the entire system; those changes are then assessed for process and policy compliance
- Tripwire Enterprise escalates those changes that put you out of compliance with your policies so that immediate action can be taken
Change Auditing: Once the organization achieves a known and trusted state, Tripwire Enterprise helps them maintain it. Tripwire Enterprise detects all change across the entire IT infrastructure—applications, databases, servers, active directories, virtual environments, middleware and network devices—and alerts IT to any unauthorized or non-compliant change.
Tripwire Enterprise provides these Change Auditing capabilities right out of the box:
- Enhanced File Integrity Monitoring: Tripwire Enterprise delivers more than traditional FIM by tightly coupling change audit and configuration assessment capabilities.
- Minimize enterprise risk: Throughout the data center, Tripwire Enterprise reduces the risks associated with change, detecting unauthorized change immediately, or alerting IT for rapid remediation.
- Achieve a known, trusted and compliant state: Tripwire Enterprise is the first solution to combine change auditing with configuration assessment, so organizations can proactively identify weak links and vulnerabilities throughout the data center.
- Change detection: Tripwire Enterprise is the only solution that provides a single source for detecting, analyzing and reporting all change across the entire IT infrastructure. Users specify how frequently to monitor for change, and can even check for change on an event-driven basis.
- Cost reduction: Tracking changes can be expensive, in terms of the time spent trying to determine who authorized a change, when they did it, and why they did it. Tripwire lowers these costs by detecting change immediately with our real-time agents, and by recording all the forensic details—who, what, when, where, how--in one place.
- Assure success and integrity of the CMDB: Tripwire Enterprise seamlessly integrates with BMC Atrium, CA CMDB, and HP Universal CMDB, providing greater granularity of change history and detail, ensuring that the CMDB remains in a known and good state, and is within policy.
Reporting and Remediation: When Tripwire Enterprise detects unauthorized or unplanned change, it immediately determines whether the change has taken the element out of policy. It generates detailed reports through the reporting console, provides prescriptive remediation steps to resolve failures, gives the option to waive the particular failure and automatically reconciles the change with leading enterprise management systems. Tripwire also provides the option to update a test with an out-of-policy value when that value is actually deemed a desirable one.
Features and Benefits:
|
|
Achieve a known and trusted state with configuration assessment
|
Tripwire Enterprise ships with policies against security standards developed by industry-trusted organizations such as the Center for Internet Security (CIS). It even includes policies designed specifically to secure VMware virtual environments.
|
|
Maintain a known and trusted state with tunable change detection
|
Tripwire Enterprise is the only solution that provides a single source for detecting, analyzing and reporting all change across the entire IT infrastructure. Users specify how frequently to monitor for change, and can even check for change on an event-driven basis.
|
|
Control IT configurations from a single solution
|
Tripwire Enterprise is the first to combine configuration assessment with change auditing in a single solution, reducing the effort and expense normally expended to gain control of the IT infrastructure.
|
|
Manage Virtual & Physical Infrastructures as one
|
Tripwire allows you to assess configuration settings and control changes to both physical systems and virtual objects using a single set of integrated functions.
|
|
Automate compliance and help pass audits
|
Tripwire Enterprise helps companies automatically achieve and maintain continuous compliance with regulatory and security standards. By providing historical evidence, detailed change information, out-of-the-box reports, and policy assessments, compliance audits are reduced from a major event to a minor task.
|
|
Ensure compliance with internal policy
|
Tripwire Enterprise enforces adherence to IT enterprise-wide policies, processes and standards, ensuring continuous operational compliance.
|
|
Capture Golden Policies
|
Tripwire’s Golden Policy feature lets users capture desirable configuration settings as policy for easy configuration replication, saving IT countless hours creating or manually modifying configuration policies.
|
|
Tripwire Remediation Advisor
|
Tripwire Remediation Advisor provides robust out-of-the-box prescriptive remediation guidance which improves IT staff efficiency in returning systems to a secure and compliant state.
|
|
Policy Waivers
|
Tripwire Policy Waivers let IT temporarily remove a test or node from an audit when they have a reasonable explanation for why the item would not meet compliance. Tripwire also generates a detailed waiver report that explains why the item was waived and when it must meet compliance, making it simple to demonstrate compliance to auditors.
|
|
Reconcile change
|
Reconcile change Tripwire Enterprise integrates with leading CMS solutions, automatically reconciling detected changes with change requests to ensure all changes are authorized and planned, and that improper changes are immediately investigated.
|
|
Comprehensive and flexible reporting
|
Tripwire’s pre-defined reports provide real-time views of configuration assessment and change auditing activities. Users can easily develop custom reports to capture and view the information most critical to the business. Report drilldown let IT quickly zero in on and correct the problems generated by improper change.
|
|
Integration with VMware VirtualCenter
|
Tripwire’s integration with VirtualCenter enables Tripwire to auto-discover new virtual infrastructure and automatically start monitoring and reporting on changes among and within the virtual infrastructure.
|
|
