Marshal EndPoint Security Auditing
Base your security policies on a thorough understanding of what's happening on the network.
More EndPoint Security features |
Comprehensive Reporting
A comprehensive suite of tabular and graphical reports make it easy for administrators to get both a high-level view of device activity on the network and detailed forensics on file movements.Marshal EndPoint Security automatically monitors all device connections, reporting back vital information such as device class, user, PC, time of connection and whether the connection was blocked or allowed.
What's more, you don't need to trawl through hundreds of log files to get the information you need - it's all presented in a user-friendly graphical report which can be shared with senior management.
File Accesses
All attempted (both successful and blocked) file accesses are recorded and reported back to the Control Center. This allows managers to see which files are being read, renamed, deleted and copied to portable storage devices.
Administrators can search on file name, file type, user, time, PC and whether the action was allowed or blocked. To help provide focused forensics, Marshal EndPoint Security can be configured to only report on certain file types or actions.
Administrator Actions
Just as Marshal EndPoint Security provides vital information on user behavior, it also collects important forensic data in the form of administrator actions. As such, whenever a policy is modified or deployed to a PC, or temporary access granted to a user, Marshal EndPoint Security automatically records this in the main administrator log.
Exporting
All Marshal EndPoint Security logs and audit trails can be exported in CSV format for further processing in third-party reporting tools.
