Traffic Monitoring Software

yourtechteam
yourtechteam used Ask the Experts™
on
Hey Experts Exchange,

We are currently looking for a traffic monitoring solution for one of our clients, yet seem to be having trouble finding one that fits our needs. Essentially we need is a traffic monitor that can map to network traffic to both IP addresses and active directory logins. For example, if we have two users that log on to the same PC and only one is going to an inappropriate site, we would like to identify that specific employee.

Thanks in advance for your help!
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
What you're describing there is more employee monitoring than traffic monitoring.

At the network level, traffic is IP-based. There is no way to determine at that level which active directory user made the request.

You need software installed on each machine which monitors what employees are doing and keeps track of what user is logged in at what time.

For that, I'd recommend Spectorsoft Spector CNE, or Spector 360 depending on your needs and the size of your organization (smaller organization = Spector CNE)

http://www.spectorsoft.com/products/#CorporateProducts

Commented:
you need to get a proxy with authentication so that you can identify URL to user mapping in the proxy logs.
A possibility is to use MS TMG with integrated authentication
I would use Microsoft Network Monitor. It's free and you have the ability to filter traffic by protocol.
Hi;
If you can send your netflow data to scrutinizer, you can view all the traffic. Scrutinizer also have LDAP and Active Directory Support.

For more information: http://www.plixer.com/blog/scrutinizer/what’s-new-in-scrutinizer-v7-cisco-netflow-analyzer-–-part-3/

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial