Reference Guide

ManualsBrandsDell ManualsConverged InfrastructureEndpoint Security Suite Pro

101

102

103

104

105

106

107

108

109

110

Security Management Server Virtual - AdminHelp v9.8

Column options related to payload data:

File Name

File Path

File KeyID

File Size

Data for an audit event's moniker or parameters. Parameters may differ for each audit

event but are the same within the event. For example, the data may differ for sl_xen_file

and sl_protected_file, but the data for each Cloud Encryption .xen file event is the same.

To search for a specific file, use the file KeyID

Client Type

Indicates whether the client is internal or external

Action

The action associated with the payload file. See Cloud_Encryption_audit events or

Protected_Office_Document_audit events.

Version

For internal Dell use only.

Column options for Protected Office only

Audit Event

- Column options Description

Data Guardian Action

If a service acts on a protected Office file, for example, modifying or deleting a file, the

Data Guardian Action column lists the reason. See

Protected_Office_Document_audit

events.

Column options related to Embargo:

From - The time that an external user can start viewing a protected file.

To - The time that an external user can no longer view a protected file.

Protected Office Document audit events

This table lists audit events that apply to Office documents:

• For Windows, audit events apply to Opt-in or Force Protected modes.

• Mac and Mobile have Opt-in mode only.

Actions for audit

events

Data Guardian Action and Description

Windows Mac

Mobile

device

Created

New

Opt

-in mode - logs an event when a user selects Save As Protected

and an Office document is protected.

Force

-Protected mode - logs events when Dell Data Guardian

performs a sweep and creates protected Office documents.

● ● ●

Accessed

Open

A user opened a protected Office document.

● ● ●

Modifed

Swept

r Windows, when Force Protected is set to On, provides data on

files that were swept and converted from unprotected to protected

Office.

● ●

Modifed

Updated

Summary of the number of times a file was changed since the last

audit data transmission.

● ● ●

Modifed

Watermarked

User printed a file or exported a file with a watermark.

●

Accessed

(Windows only)

Block Copy

Indicates a file where a user tried to copy from a protected Office

document to an unprotected file and was blocked.

●

Accessed

Det

ected tampering

Tampering was detected in the .xen file portion of a protected

Office document. This audit event alerts you to the tampering, but

the .xen file cannot be repaired.

● ● ●