ObserveIT Features
Key Features
Versions and Pricing
What's right for you?
Record and Replay Windows Sessions
- Exact video playback of every Windows session
- Includes mouse movements, UI interaction and text entry
- Fast navigation, using DVD-like controls
Record and Replay Unix/Linux Sessions
- Exact video playback of every Unix and Linux session
- Includes command line interaction, text entry and underlying system calls
- Fast navigation, using DVD-like controls
Video Activity Analysis
- Generates textual activity data of every user action
- Quickly review text-based activity logs of any user session
- Search all recorded videos by activity keyword (e.g., applications run, windows opened, URLs accessed, text entered)
- Both activity report lines and search results are linked to the specific point in the video where the action occurred
- No need to replay hours of video to find what you’re looking for
Advanced Keylogging
- Next-generation keylogging with unique capabilities
- Captures text typed partially, edited, pasted, auto-correct, changed by mouse click, etc.
- Captures commands entered in a CMD window even made using shortcuts, such as tab and up/down arrow keys
- Fully-searchable keylogging records are linked directly to video recordings of the text being entered/changed
Customizable Recording Policies
- Customizable granular recording policy rules per server, user and application
- Each policy may include video recording, activity log recording or both
- Recording policies may implement privileged user identification, identity theft detection and more
Real-time Playback
- Sessions recordings are immediately available once session begins
- View session activity "on the air", while users are still active
Comprehensive Activity Coverage
- Agnostic to network protocol and client application
- Captures all remote sessions and also console sessions
- Supports SSH, Telnet, Terminal Services, Citrix, Remote Desktop, PC-Anywhere, VMware, VNC, Dameware and more
Generate Logs for Apps with No Logs
- Detailed log for every app, even those that have no internal logs
- Cloud apps (ex: salesforce.com), legacy apps (ex: customized accounting), commercial apps (ex: Excel, SQL query tools)
- Logs shows actual user action (files opened, screens viewed) instead of obscure technical details of system event log
Privileged User Identification
- Require all users of shared ID accounts (e.g., administrator, root) to supply personal login credentials
- Improve system monitoring and security regulation compliance
- Manage the secondary login credentials in ObserveIT or leverage Active Directory or CA PUPM user management
Pervasive User Permissions
- Granular permissions / access control
- Permission-based filtering affects all content access (reports, search results, etc.)
- Satisfies regulatory requirements
Identity Theft Detection
- Detects access from unauthorized client computers
- Generates real-time alerts for suspicious logins
- Manages approved login-client pairs
SIEM Integration
- Display user activity text logs within SIEM reports and dashboards
- Launch video replay of user action from within any SIEM
- Correlate ObserveIT video replay with other log data for on-the-spot audit clarifications
- Native integration connectors available for Splunk, ArcSight, RSA enVision and CA UARM, plus easy data integration for other tools
System Monitor Integration
- Instant replay from within network management (SCOM, Unicenter, Tivoli, OpenView and more)
- Real-time alerts on any user action (file access, network share, registry edit, URL access)
Ticketing System Integration
- Can require a valid ticket number before allowing server login
- Can allow creation of a new ticket on-the-fly during server login
- Enrich ticket records with details such as secondary login ID
- Easily audit every ticket with a direct link to related session videos
User Messaging
- Send policy and status updates to each user exactly as they log in to server
- Ensure that corporate standards are understood and acknowledged
- Capture admin support ticket number for issue tracking
Report Generator
- Create your own custom reports
- Schedule reports to run automatically for email delivery
- Export Excel or XML data
4-Eyes (Dual Password) Session Playback Privacy
- Specify a second password (not managed by the ObserveIT administrator) that is required to replay video
- Ensure audit completeness as well as employee privacy
- In the most typical usage, Management (via ObserveIT Administrator) holds the main ObserveIT password, and a union rep or legal counsel holds the second password
- Satisfy the most stringent privacy protection regulations, including BDSG (Germany), CNIL (France), DPD 95/46/EC (EU), Human Rights Act (UK)
Robust Security
- Agent-Server encryption
- Digital Signatures
- Watchdog mechanism
Database Management
- Selectively archive video recording data
- One-click access archive data
- Flexible storage options via SQL database or file system
Agent API Interface
- Control the ObserveIT Agent via scripting and custom DLLs from within your corporate applications
- Start, stop, pause and resume recorded sessions based on custom event triggers
- Trigger activity based on process IDs, process names or web URLs
Small Footprint
- Ultra-efficient data storage: Less than 250GB/year for high-usage, 1000 server environment
- Minimal Agent CPU utilization: 0% CPU when no console active, 1%-2% CPU, 10 MB RAM during session
