DATASHEET (TRIPWIRE)

Tripwire Enterprise 9.0

Superior Security, Continuous Compliance
Security, compliance, and IT operations leaders need a powerful and effective
way to accurately identify security misconfigurations and indicators of
Key Benefits
compromise. Fortra’s Tripwire® Enterprise is the leading compliance monitoring • Powerful integrity monitoring
solution, using file integrity monitoring (FIM) and security configuration and security configuration
management (SCM). Backed by decades of experience, it’s capable of advanced management workflow
use cases unmatched by other solutions. • Unparalleled visibility into
misconfigurations and
This fully integrated suite of solutions for policy compliance, system integrity, and
suspicious changes  
remediation management reaches far beyond simple compliance. It enables
teams to rapidly achieve an increased level of security across the entire enterprise,
• Compliance monitoring
including on-premises, cloud, and industrial assets.   backed by decades of
experience
How It Works: Powerful, Integrated Controls   • Threat prioritization with
Tripwire Enterprise delivers four core capabilities in a single interface that work in guidance on returning a
concert as an enterprise-class security and compliance solution: system to a secure and
compliant state
System Integrity Management scans across large heterogeneous environments
• Monitoring for adherence to
to detect threats and provides an instant view into configuration vulnerabilities—
regulatory policy require-
boosting ecosystem security by reducing configuration drift and unauthorized
ments (PCI, NIST, CIS, and
change. Tripwire File Integrity Manager is the world’s first and best FIM solution and
it can also be used stand-alone for granular endpoint intelligence. When used with
dozens more), with delivery
Tripwire Policy Manager, it delivers change-triggered configuration assessment of auditor-friendly reporting
and other system-configurable responses. This turns a “passive” configuration
assessment into a dynamic, continuous, and real-time defensive solution, delivering Key Integrations
customized contextual information to accelerate effective response.  
• Tripwire LogCenter®
Policy Management establishes and maintains continuous agent and agentless • Splunk
configuration assessment against 4,000+ combinations of platforms, security and • ServiceNow
compliance policies, standards, regulations, and vendor guidelines. Tripwire Policy
• Active Directory
Manager offers complete policy customization, waiver and exception management,
automated remediation options, and prioritized policy scoring. It does all this while • SAML 2.0
providing auditors with easily accessible evidence of compliance, making policy • Cherwell
status highly visible and actionable for compliance teams.   • Remedy
Advanced Use Cases are available thanks to the highly customizable monitoring
• JIRA
options, real-time change detection for your most critical assets, enterprise-wide • Thycotic
detection of emerging vulnerable files (Log4J, Spring4Shell, Text4Shell, etc.), and contin- • ChangeGear
ual review of networking devices to meet strict hardening standards. Tripwire Enterprise • CyberArk
is unmatched in advanced monitoring use cases, fortifying your security ecosystem.
Fortra Datasheet Tripwire Enterprise 9.0

Remediation Management works alongside Tripwire Policy Manager to supply built-in guidance to IT security and compliance
teams to repair drifted, misaligned security configurations while retaining role-based management, approvals, and signoffs for
repairs. This helps operations teams quickly understand what failed and how to return systems into a production-ready state—
and once they’re in production, keep them there.

Investigation and Root Cause Drill-down gives IT security and operations teams the ability to quickly and efficiently determine
what happened. Systems inevitably change as enterprises constantly revise and change their people, processes, and technol-
ogies. Tripwire Enterprise delivers granular drill-down, and side-by-side historic baselines and comparisons to quickly provide
investigative teams what they need to know: what changed, when, by whom and how often, along with “how” information,
giving unparalleled visibility into the forensic details of changes to the environment.

Industry-leading Security and Compliance Capabilities  

Tripwire continuously adds new capabilities to meet evolving security and compliance challenges. Tripwire Enterprise now has
capabilities to protect industrial devices, and, using the MITRE ATT&CK framework, discover evidence of adversarial behavior in
your environment.

Reporting and Integration  

Between the included audit-ready reporting, our advanced security use cases, and our integrations to leading platforms such
as ServiceNow and Splunk, Tripwire Enterprise enables you to efficiently connect security details with business context: Always
know your current security posture (and how it’s trending) to achieve corporate objectives for risk reduction. Get visibility into
the security and risk trends across your enterprise—from the entire organization down to business units or single departments.  

MITRE ATT&CK Framework  

Developed by the MITRE corporation, the ATT&CK framework is a cybersecurity model illustrating how adversaries behave and
details the tactics you should use to improve security. Using ATT&CK policy content for Tripwire Enterprise, you can detect and
report on adversarial behavior in your environment—adding a new layer of defense to your security strategy. And this is only
one of dozens of frameworks available in our comprehensive content library.

Node detail screen showing policy results for this node.

Fortra Datasheet Tripwire Enterprise 9.0

Key Features and Benefits

Support for Hybrid Environments
» Monitors both on-premises and cloud environments for security and compliance
» Reduces costs and gives better visibility via a single solution for both environments  
Updated Data Collection and Communication
» Enables best-in-class security, integrity monitoring, and configuration and compliance management with Tripwire Axon®, a
pluggable, extensible endpoint data collection and communication platform

Auto Onboarding/Offboarding for Cloud Assets

» Classifies and scans assets as soon as they are connected in dynamic environments  
» Delivers immediate baseline state to monitor changes through the life of an asset even when short-lived
» Provides automatic offboarding that lets you define how long ephemeral assets data should be retained
Single Point of Control for All IT Configurations
» Supports centralized control of configurations across the entire physical and virtual IT infrastructure, including servers and
devices, applications, and multiple platforms and operating systems

Advanced Integration Through REST APIs

» Enables programmatic automation of Tripwire Enterprise, extraction of collected information, and custom integrations with
other solutions
» Allows automation of routine tasks through administration APIs, to integrate Tripwire Enterprise workflows with other business
processes and tools.

Robust Asset Views

» Supports classification of assets with business-relevant tags, such as risk, priority, geographic location, regulatory policies,
and more
» Offers provisioning with an asset tag file, increased scale for large numbers of assets, and imported asset tagging from
integrations with other Tripwire products

Workflow Tools for Managing Failed Configurations

» Delivers the Remediation Manager module for role-based workflows that let users approve, deny, defer, or execute manual
and automated remediation of insecure and non-compliant configurations

Integration with Change Management Systems

» Integrates with leading change management system (CMS) solutions such as ServiceNow, Remedy, Cherwell, JIRA and more
» Automatically reconciles detected changes against change tickets and change requests
Support for Maintaining a Secure, Compliant State
» Automates compliance with industry regulations and standards such as PCI DSS, SOX, FISMA, DISA, NERC, and many others
» Combines security configuration assessment with real-time FIM to detect, analyze, and report on changes as they happen to keep
configurations continually compliant and fix issues before they result in a major data breach, audit finding, or long-term outage

Faster, Easier Audit Preparation

» Dramatically reduces the time and effort for audit preparation by providing continuous, comprehensive IT infrastructure
baselines, along with real-time change detection and built-in intelligence to determine the impact of change
» Includes reports designed with auditors in mind to ensure you can confidently supply justifications
Active Directory and SAML Integrations
» Integrations between Tripwire Enterprise and Active Directory or your preferred IDP reduces administrative overhead and
minimizes human error with auto-created users, groups, and roles for secure and efficient access management
Fortra Datasheet Tripwire

Broad Support for your IT Stack  

Keep watch over mission-critical servers or the entire IT infrastructure, including cloud and virtualized environments, applica-
tions, and industrial devices. Tripwire Enterprise provides the capability to assess, validate, and enforce policies while detecting
all changes—no matter their source. It supports out of the box agent and agentless monitoring for:
Physical, Virtual, Cloud and Hybrid Environments: Works in both physical and virtualized environments including private,
public, and hybrid clouds. The Tripwire Enterprise console can operate as a virtual machine and its agents can monitor any
supported virtualized or physical endpoint.  
File Systems and Desktops: Assesses configurations of physical and virtual server and desktop file systems, including security
settings, configuration parameters, and permissions with forensic-level insight.
Directory Services: Includes independent compliance policy management for LDAP-compliant directory server objects and
attributes such as LDAP schema, password settings, user permissions, network resources, group updates, and security policies.
Network Devices: Assesses configuration settings of the broadest range of network devices in the industry, including any
device running a POSIX-compliant operating system. With custom connection parameters, most devices can be monitored.  
Databases: Keeps Oracle, Microsoft, and IBM database servers and instances in a secure, continually high-performing state.
VMware: Provides visibility across the VMware virtual infrastructure, enabling continuous configuration control of virtual
environments.
Applications: Compliance policy management and integrity monitoring capabilities ensure supported applications are config-
ured properly for security, compliance, functionality, and availability.
Customizable and Flexible Device Support: Tripwire maintains a content library with over 4,000 out-of-the-box configurations.
The customizable monitoring capabilities of the zero-configuration Tripwire Axon® agent empowers Tripwire Enterprise to work
with most devices supporting common protocols, or even APIs. This gives you the flexibility to monitor assets that are critical to
your operation—even when those assets are in-house or custom solutions not widely available in the market.

SYSTEMS MONITORED
Major OSes: Windows, Red Hat, Oracle,
AIX, SUSE, Debian, Ubuntu, Solaris,
CentOS, Rocky, HP-UX

Directory Services: Active Directory,

LDAP

Network Devices: Firewall, IPS and IDS,

routers, SSH devices

Databases: Oracle, MS SQL, DB2 and

PostgreSQL

Virtual Infrastructure: VMware

Tripwire Enterprise’s customizable dashboard showing Security and Change compliance.

Ready To Dig Deeper?

To learn more about Tripwire Enterprise capabilities, reports, available policies, and platform support, visit tripwire.com.

About Fortra
Fortra is a cybersecurity company like no other. We’re creating a simpler, stronger future for our
customers. Our trusted experts and portfolio of integrated, scalable solutions bring balance and
control to organizations around the world. We’re the positive changemakers and your relentless ally to
Fortra.com
provide peace of mind through every step of your cybersecurity journey. Learn more at fortra.com.

© Fortra, LLC and its group of companies. All trademarks and registered trademarks are the property of their respective owners. fta-tw-ds-1122-r1-hm