Commvault Expands End-to-End Identity Resilience: Detect, Log, and Reverse Hard-to-Detect Threats in Active Directory

Commvault Systems Inc., a active player in unified resilience at enterprise scale, announced an expansion of its end-to-end Identity Resilience portfolio – enabling customers to find hard-to-detect threats in Active Directory (AD), automatically log and audit malicious changes, and then rapidly roll back changes to a trusted, clean state.The company also announced advancements to its Active Directory forest recovery offering that helps teams test recovery plans in good times, so they are ready for the bad times.

Introduced as part of the Commvault Cloud Unity platform release, Commvault’s latest identity resilience advancements help enterprises rapidly address these challenges from every angle.

AD is one of the hottest threat vectors for bad actors to exploit. Nine out of ten attacks target AD because it controls access to data, systems, and applications – without it, business operations can grind to a halt. Bad actors often launch attacks that fly under the radar – like stealing credentials, exploiting broad permissions, and accessing sensitive data and systems.

Introduced as part of the Commvault Cloud Unity platform release, Commvault’s latest identity resilience advancements help enterprises rapidly address these challenges from every angle.

• Detect weaknesses and threats: Uses integrated vulnerability assessment, identity change, and anomaly detection to track risks across users, groups, and policies in AD.
• Log and audit the changes: IT and security teams can see who made what changes, when, and from where – and maintain an audit trail that logs all important change events.
• Reverse unwanted changes in real time:From the change log itself, teams can identify suspicious modifications and quickly roll them back – without needing to locate recovery points or objects manually.

“Active Directory serves as the core of our business operations and if compromised, key business functions could be impacted,” said Erich Beter, senior director, information security, Jazwares. “Commvault’s innovation with Identity Resilience will allow us to detect and roll back malicious identity changes as they happen so that we can maintain reliable authentication and access control while strengthening our overall cyber resilience.”

AD Forest Recovery  + Cleanroom Recovery
Commvault is also integrating its AD forest recovery offering with Cleanroom Recovery.

By integrating these technologies, customers can now recover AD forests in an isolated cleanroom and test their recovery plans in advance, without disrupting their identity systems in production.

“Commvault’s end-to-end Identity Resilience portfolio provides game-changing protection and recovery to customers. And, with Commvault, we go much further,” said Rajiv Kottomtharayil, CPO, Commvault. “We unify identity resilience with data protection and data security on one platform. That means a lower overall TCO for customers and a single, reliable recovery plan for their entire enterprise, not just one workload.”