Event Reports

Event Reports provide you with a 24-hour report of file changes (events) in the system. By default, it monitors the entire filesystem, but you can exclude selected paths (for more information, see). You can specify multiple reporting hours to generate a delta report containing events happening at a specific time.

The reports are formatted in JSON and are available in the Agent’s log and are sent to Notification Providers (DPX, Syslog).

Tip. To minimize clutter in your reports, consider excluding the GuardMode Agent's installation directory from Event Reports.

PreviousSMB Monitoring (Linux Only)NextConfiguring Event Reports

Last updated 10 months ago