Event Reports
Event Reports provide you with a 24-hour report of file changes (events) in the system. By default, it monitors the entire filesystem, but you can exclude selected paths (for more information, see Excluding paths from Event Reports). You can specify multiple reporting hours to generate a delta report containing events happening at a specific time.
The reports are formatted in JSON and are available in the Agent’s log and are sent to Notification Providers (DPX, Syslog).
Tip. To minimize clutter in your reports, consider excluding the GuardMode Agent's installation directory from Event Reports.
Last updated