Go Up
You are here: DeploymentNetwrix Auditor System RequirementsRequirements to Install Netwrix AuditorDeployment Options

Deployment Options

Netwrix Auditor allows distributed deployment: the main product instance with Netwrix Auditor Server and remote Netwrix Auditor clients can be installed on multiple machines. The Audit Database and the Long-Term Archive can be located on the same computer with Netwrix Auditor Server or hosted separately provided that Netwrix Auditor Server can access them. See How It Works for more information on the product components and their interaction.

NOTE: Both Audit Database and Long-Term Archive are configured after Netwrix Auditor installation. See Settings for more information.

Netwrix Auditor should be installed on a workstation, preferably a virtual machine—installation on a domain controller is not supported. Review the following deployment options and mind the possible restrictions:

If Netwrix Auditor Server and the audit system reside... Mind the following restrictions...

In the same domain

No restrictions

In two-way trusted domains

No restrictions

In non-trusted domains

  • The computer where Netwrix Auditor Server is installed must be able to access the target system (server, share, database instance, SharePoint farm, DC, etc.) by its DNS or NetBIOS name.

  • For monitoring Active Directory, File Servers, SharePoint, Group Policy, Inactive Users, Logon Activity, and Password Expiration, the domain where your target system resides as well as all domain controllers must be accessible by DNS or NetBIOS names—use the nslookup command-line tool to look up domain names.

  • For monitoring User Activity, each monitored computer (the computer where Netwrix Auditor User Activity Core Service resides) must be able to access the Netwrix Auditor Server host by its DNS or NetBIOS name.

In workgroups

  • The computer where Netwrix Auditor Server is installed must be able to access the target system (server, share, database instance, SharePoint farm, DC, etc.) by its DNS or NetBIOS name.

  • For monitoring Active Directory, File Servers, SharePoint, Group Policy, Inactive Users, Logon Activity, and Password Expiration, the domain where your target system resides as well as all domain controllers must be accessible by DNS or NetBIOS names—use the nslookup command-line tool to look up domain names.

  • For monitoring User Activity, each monitored computer (the computer where Netwrix Auditor User Activity Core Service resides) must be able to access the Netwrix Auditor Server host by its DNS or NetBIOS name.
  • Netwrix Auditor Server, the Audit Database (both SQL Server and SSRS), and the Long-Term Archive must reside on the same computer.
  • The computer hosting Netwrix Auditor Server cannot run Windows 7 or Windows Server 2008 R2.

The remote Netwrix Auditor client can be installed on any workstation provided that a user who runs the product is granted all necessary permissions. See Configure Netwrix Auditor Service Accounts for more information.

Go Up