Manualshelf

Reference Guide

ManualsBrandsDell ManualsConverged InfrastructureData Guardian
121122123124125126127128129130
Navigate the Dell Server
112
Event Data
Event data displays below the map about the events represented on the map. Narrow the amount of
data displayed by using the + icon in the upper left corner of the map to zoom in. Expand the amount of
data displayed by using the - icon in the upper left corner of the map to zoom out.
Filter the event data with the following fields, which are immediately below the map:
Event Type - Data Guardian Cloud Encryption, Protected Office, or Beacon
Timestamp - Event date and time
Device - Device type and identifier (hostname, serial number, IMEI/MEID, CDN)
User - User name in UPN format
File Key ID - GUID that identifies the key used to protect the file
File Name - File name with extension
Action - File action that triggered the event
Data Guardian Action - Action taken by Data Guardian, based on policy and the file action that
triggered the event
Select columns to display from the Columns list.
Export Events to a SIEM/Syslog Server
Integrating with a SIEM/syslog server allows administrators to run customized analytics on threat and
audit data within their environments. The Dell Server supports the export of Advanced Threat
Prevention and Data Guardian events.
To export audit events to a syslog server or to a local file:
1. In the left pane, click Management > Services Management.
2. Select the Events Management tab.
3. Select the appropriate option(s):