TechValidate Research on Quest Microsoft Platform Management


Quest InTrust Case Study

Capgemini

Introduction

This case study of Capgemini is based on a March 2018 survey of Quest InTrust customers by TechValidate, a 3rd-party research service.

“The web-based UI is very simple to use. Storage required to retain data has been drastically reduced.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Quest InTrust:

  • Collecting large volumes of event log data from different systems, devices and applications
  • Native event log data is cryptic and hard to interpret
  • Need to protect logs from tampering or erasure
  • Strict compliance regulations for data retention
  • Need to respond quickly to security incidents

Use Case

The key features and functionalities of Quest InTrust that the surveyed company uses:

  • Uses the following SIEM tools in their environment:
    • ManageEngine
  • Is collecting data from the following systems:
    • Windows (servers and workstations)
    • Web Servers
    • DB Server (SQL Server, Oracle)
    • Exchange
  • Uses the following systems to analyze InTrust data:
    • Quest InTrust Repository Viewer (Searches and Reports)
    • Quest Knowledge Portal
    • SQL Server Reporting Services

Results

The surveyed company achieved the following results with Quest InTrust:

  • Realized the following benefits with InTrust:
    • Collected and stored all client workstation logs in one place
    • Stored massive volumes of data in a highly-compressed repository to reduce costs
    • Increased the speed of security investigations and audits with full-text search on all native logs
    • Improved real-time alerting of suspicious activity
    • Automated responses to specific events
    • Protected event log data from tampering or erasure
    • Improved pre-defined best practice reports
  • Reduced storage costs by 61-80% with InTrust’s highly-compressed repository
  • Collects 10,000 events per day using InTrust
  • Sends 7,000 events per day to their SIEM solutions




About This Data

This data was sourced directly from verified users of Quest Microsoft Platform Management by TechValidate.

TechValidate verifies the identity and organizational affiliation of all participants that contribute to published research data. When research participants so desire, we also guarantee their anonymity so that they may share information honestly and freely.


More Research on Quest Microsoft Platform Management