1. Manuals
  2. Brands
  3. 8e6 Technologies Manuals
  4. Network Hardware
  5. Enterprise Reporter ER HL/SL
  6. Evaluation manual

8e6 Technologies Enterprise Reporter ER HL/SL Evaluation Manual

Enterprise reporter
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Enterprise Reporter
®
EVALUATION
GUIDE
Models: ER HL/SL
Software Version: 5.0.00
Document Version: 01.07.09

Advertisement

Table of Contents
loading

Related Manuals for 8e6 Technologies Enterprise Reporter ER HL/SL

Summary of Contents for 8e6 Technologies Enterprise Reporter ER HL/SL

  • Page 1 Enterprise Reporter ® EVALUATION GUIDE Models: ER HL/SL Software Version: 5.0.00 Document Version: 01.07.09...
  • Page 2 This document may not, in whole or in part, be copied, photocopied, reproduced, trans- lated, or reduced to any electronic medium or machine readable form without prior writ- ten consent from 8e6 Technologies. Every effort has been made to ensure the accuracy of this document. However, 8e6 Technologies makes no warranties with respect to this documentation and disclaims any implied warranties of merchantability and fitness for a particular purpose.

  • Page 3: Table Of Contents

    ONTENTS NTERPRISE EPORTER Overview..1 Note to Evaluators..1 NSTALL THE NTERPRISE ONFIGURE EST THE Understand the most common and useful features..3 Use custom Category Groups to narrow your search... 4 How to create custom Category Groups ... 4 Group Information frame ...
  • Page 4 ONTENTS Create a Custom Report for a specific user..22 How to use the Custom Report Wizard ... 22 Generate a new Custom Report ... 22 Next steps for documenting, monitoring specific user activity ... 24 Export a Custom Report... 24 Save a Detail Custom Report ...

  • Page 5: E 6 Enterprise Reporter Evaluation Guide

    NTERPRISE Overview Thank you for choosing to review 8e6 Technologies’ Enterprise Reporter. The Enterprise Reporter helps administrators manage internal Web-based threats by documenting historical Internet usage information by user. The Enterprise Reporter is unique in that it is the only dedicated appliance that processes and displays Internet filtering logs without compromising filtering perfor- mance or impacting network functions.

  • Page 6: Install The Enterprise Reporter

    NSTALL THE NTERPRISE EPORTER NSTALL THE NTERPRISE To install the appliance, configure the box and to test reporting is operational please refer to the step-by-step instructions found in the Enterprise Reporter Quick Start Guide provided in the box. Please note that prior to reviewing the Enterprise Reporter you should install the R3000 Internet Filter, which is required for sending logs to the Reporter.

  • Page 7: Configure , Test The Enterprise Reporter

    ONFIGURE EST THE ONFIGURE EST THE Understand the most common and useful features One of the advantages of a hardware appliance, in addition to its compatibility and extremely low profile on the network, is its ease of use. Configuration of the Enter- prise Reporter can seem disarmingly simple at times, but when the hardware and software are designed to work together, the levels of complication decrease and robust power and efficiency significantly increase.

  • Page 8: Use Custom Category Groups To Narrow Your Search

    ONFIGURE EST THE NTERPRISE EPORTER Use custom Category Groups to narrow your search Prior to running any reports, there are a few recommended configuration steps that create a more customized experience for the evaluator. The first step is to create category groups, which are customized groupings from the 8e6 library of more than 99 filter categories.

  • Page 9: Group Definitions Frame

    ONFIGURE EST THE Group Definitions frame The Group Definitions frame displays to the right in the Category Groupings window. In this frame you define a category group by specifying which categories will belong to that group. How to add Categories to a Category Group 1.

  • Page 10: Use Custom User Groups To Narrow Your Search

    ONFIGURE EST THE NTERPRISE EPORTER Use custom User Groups to narrow your search The next step is to create user groups, which are customized groupings of users that reside on the organization’s network. For example, most enterprise customers prefer to set up user groups for each department within the company, and educa- tion customers prefer to setup separate user groups for each classroom or grade level.

  • Page 11: Group Definitions Frame

    ONFIGURE EST THE Group Definitions frame The Group Definitions frame displays to the right in the User Groupings window. In this frame you can view members of a user group, and can define a user group by specifying which users will belong to that group. Define a User Group When defining a user group, you can add and/or exclude users to/from that group.

  • Page 12: Rebuild Groups

    ONFIGURE EST THE NTERPRISE EPORTER • Please Enter IP Range - This frame is used for including users based on a range of IP addresses. For example, you might have one range of IP addresses for sales, and another for admin. Enter the IP address range in the From and To fields.

  • Page 13: Use Enterprise Reporter To Conduct An Investigation

    ONFIGURE EST THE Use Enterprise Reporter to conduct an investigation Once custom category groups and user groups have been created, administrators can begin running their first reports. In most cases, administrators will employ the Enterprise Reporter as a forensic tool to determine if anomalous Internet behavior exists in their organization.

  • Page 14: Use Enterprise Reporter Canned Reports

    ONFIGURE EST THE NTERPRISE EPORTER Use Enterprise Reporter Canned Reports As previously stated, the first thing the administrator will see when logging into the Enterprise Reporter is a dashboard of graphical reports called “Canned Reports”. By viewing these reports, an administrator has an at-a-glance view of any anoma- lous behavior that warrants an investigation.

  • Page 15: How To Generate A Canned Report

    ONFIGURE How to generate a Canned Report To generate a canned report: 1. Go to the navigation panel and click Canned Reports to display yesterday’s Top 20 (Internet Filtering) Categories by Page Count report view in the right panel: Yesterday’s Top 20 Categories by Page Count Report TIP: Click the left arrow or right arrow at the edges of the dashboard to display thumbnail images that are currently hidden.
  • Page 16 ONFIGURE EST THE NTERPRISE EPORTER Sample Bar Chart Canned Report Sample Pie Chart Canned Report The header of the generated canned report includes the date range, Report Type, and criteria Details. The body of the first page of the report includes the following information: •...

  • Page 17: How To Export A Canned Report

    ONFIGURE EST THE The body of the following page(s) of the report includes Count columns and corre- sponding totals. The Grand Total and Count display at the end of the report. NOTE: See ‘Summary Drill Down Report navigation’ for information about report elements referenced above.

  • Page 18: How To Generate A Summary Drill Down Report

    ONFIGURE EST THE NTERPRISE EPORTER How to generate a Summary Drill Down Report To generate a summary drill down report: 1. Go to the navigation panel and click Drill Down Reports to display (by default) today’s Categories report view by Page Count in the right panel: Sample Drill Down Categories Report (Summary report) 2.

  • Page 19: Summary Drill Down Report Navigation

    ONFIGURE EST THE 3. Use the tools in the right panel to create the desired drill down view. NOTE: See ‘Summary Drill Down Report navigation’ for information on using the reporting elements described in this sub-section. 4. The drill down view can be exported, saved, and/or scheduled to run at a spec- ified time.

  • Page 20: Count Columns

    ONFIGURE EST THE NTERPRISE EPORTER Count columns Columns for specified “item counts” display in the body of all drill down report views. The column for the current report type does not display and therefore cannot be selected. Count columns • Category Count - displays the number of categories a user has visited, or the number of categories included within a given site.

  • Page 21: Sort Records By Another Column

    ONFIGURE EST THE However, if an advertisement or banner ad (an object on the page) is actually a page from another site, this item would not be classified as an object but as a page, since it comes from a different server. By clicking the arrow to the right of any record in this column, the custom report view displays data for all objects accessed, including hyperlinks to those objects (this is covered in greater detail in the next section ‘Detail Drill Down Report navigation’).

  • Page 22: Detail Drill Down Report Navigation

    ONFIGURE EST THE NTERPRISE EPORTER • in the Record navigation field, click any of the four arrow buttons to advance forward or backward through the list of records. In the order in which they display in the Record field, clicking these buttons moves you to the first record, the record prior to the selected record, the record following the selected record, and the last record.

  • Page 23: Page Links

    ONFIGURE EST THE • Filter Action - the Filter Action column displays the type of filter action used by the R3000 in creating the record: "Allowed", "Blocked", "Warn Blocked" (for the first warning page that displayed for the end user), "Warn Allowed" (for any subsequent warning page that displayed for the end user), "X-Strike", or "N/A"...

  • Page 24: Evaluation Steps

    ONFIGURE EST THE NTERPRISE EPORTER Evaluation steps For the purpose of this evaluation, follow these steps to witness how the 8e6 Enter- prise Reporter is best-in-class in terms of the extent of detailed page and object information it provides. Step 1: Select a specific user by Category If not already completed, select the page information drill down arrow to the right of any record in the “Page Count”...

  • Page 25: Step 4: Sort By "Content Type

    URL in the 8e6 category library and “Search KW” indicates a user typed in a prohibited word into a search engine text box. One of 8e6 Technologies’ differentiators is “Proxy Pattern Blocking,” which will show up in the “Content Type”...

  • Page 26: Create A Custom Report For A Specific User

    ONFIGURE EST THE NTERPRISE EPORTER Create a Custom Report for a specific user After reviewing the detail drill down report, if the administrator is confident that an individual has violated the Internet Acceptable Use Policy (AUP), the most common step to take next is to run a custom report for this specific individual that covers a greater time period period.
  • Page 27 ONFIGURE • At the From Time field, specify the start of the time range by making a selec- tion from any of the pull-down menus for the hour (1-12), minute (00-59), or AM or PM. • At the To Time field, specify the end of the time range by making a selection from any of the pull-down menus for the hour (1-12), minute (00-59), or AM or 3.

  • Page 28: Next Steps For Documenting, Monitoring Specific User Activity

    ONFIGURE EST THE NTERPRISE EPORTER NOTE: As the report is generating, a window displays on the screen providing status on which stage of the report process is underway. When completely generated, the specific user report displays in the view pane. This report has the same format as the detail drill down report discussed earlier.

  • Page 29: Save A Detail Custom Report

    ONFIGURE Save a Detail Custom Report 1. Click the Save Report button to open the Save Custom Report pop-up box: Save Custom Report option (Detail report) 2. In the Save Name field, enter a name for the report. This name will display in the Report Name pull-down menu in the Saved Custom Reports option acces- sible via the Custom Reports menu.
  • Page 30 ONFIGURE EST THE NTERPRISE EPORTER add—a check mark in the checkbox. By entering a check mark in this checkbox, activity on machines not assigned to specific end users will not be included in report views. Changing this selection will not affect the setting previously saved in the Options window.

  • Page 31: Schedule A Report To Run

    ONFIGURE Schedule a report to run Once a report view has been saved, it can be scheduled to run at a designated time. To schedule a report to run: 1. Go to the Settings menu in the navigation panel and select Event Schedule. The Event Schedule option is used for maintaining a schedule for generating a customized report.
  • Page 32 ONFIGURE EST THE NTERPRISE EPORTER 4. Select the Report to Run from the pull-down menu. 5. Select the frequency When to Run from the pull-down menu (“Daily”, “Weekly”, or “Monthly”). If Weekly, specify the Day of the Week from the pull-down menu (Sunday - Saturday).

  • Page 33: Appendix A: Samples Of Commonly Used Reports

    ONFIGURE EST THE Appendix A: Samples of Commonly Used Reports Though this Evaluation Guide is primarily designed to lead the evaluator through the process of an investigation, there are many other useful features to explore in the Enterprise Reporter. Below is a summary of some of the other custom reports an administrator can create and have automatically emailed on a regular basis in order to be kept up to date on Internet threats arising from within the organization.

  • Page 34: Report Format

    ONFIGURE EST THE NTERPRISE EPORTER Report format For each report, the header of the reports contain the following information: • Sort Order: Page Count, descending • From: / To: today’s date displays • the name of the report displays The footer of the reports contain the following information: •...

  • Page 35: Sample Report 2: "Top 20 Sites By User/Site

    A: S ONFIGURE EST THE NTERPRISE EPORTER PPENDIX AMPLES OF OMMONLY EPORTS Sample Report 2: “Top 20 Sites by User/Site” This report will document the top 20 sites visited for every user in the organization. This is a useful tool in monitoring the high level Web activity of users, and can help fine-tune sites the administrator allows users to access.

  • Page 36: Sample Report 3: "By Category/User/Site

    ONFIGURE EST THE NTERPRISE EPORTER Sample Report 3: “By Category/User/Site” This is an example of a triple break report that shows all activity on the network, broken out by category, then user, and then site. This is a useful report if the administrator is looking for an all-encompassing view of Internet activity within the organization.

  • Page 37: Appendix B: Export And Save Summary Reports

    ONFIGURE EST THE Appendix B: Export and Save Summary Reports The Enterprise Reporter has a variety of different reporting options. In a fashion similar to the Specific User Report creation process described in the sample inves- tigation earlier in this guide, administrators can also create custom reports from a Summary Drill Down Report view.

  • Page 38: Step 3: Export A Summary Drill Down Report

    ONFIGURE EST THE NTERPRISE EPORTER Step 3: Export a Summary Drill Down Report 1. Click the Export Report button to open the Export Drill Down Report pop-up box: Export Drill Down Report option (Summary report) NOTE: Information on using the fields in this pop-up box can be found in the ‘Report fields’ sub-section.

  • Page 39: How To Save A Summary Drill Down Report

    ONFIGURE EST THE How to save a Summary Drill Down Report 1. Click the Save Report button to open the Save Custom Report pop-up box: Save Custom Report option (Summary report) 2. In the Save Name field, enter a name for the report. This name will display in the Report Name pull-down menu in the Saved Custom Reports option acces- sible via the Custom Reports menu.
  • Page 40 ONFIGURE EST THE NTERPRISE EPORTER 5. Choose the break type, output type and format: • Break type - available selections are based on the type of report generated. There are no break types available for specific user reports. • Output type - choose either “E-Mail As Attachment”, or “E-Mail As Link”. •...

  • Page 41: Other Summary Report Tools

    ONFIGURE EST THE Other Summary Report tools Set Result Limit 1. Click the Set Result Limit button to open the Set Result Limit pop-up box: Set Result Limit option (Summary report only) 2. Indicate the Result Set Limit by selecting the appropriate radio button: •...

  • Page 42: Display And # Records Fields

    ONFIGURE EST THE NTERPRISE EPORTER Week", “Last Weekend", “Current Week", “Last Month”. Reports can be run for any data saved in the ER Server’s memory. • Today - this option generates the report view for today only, if logs from the Web access logging device have been received and processed.

  • Page 43: Search And Filter String Fields

    ONFIGURE EST THE NOTE: The Default Top Value entry in the Default Options window is accessible via Default Options in the Settings menu. Customizing the Client of the Enterprise Reporter Web Client User Guide for more information about the Default Top Value Search and Filter String fields The Search and Filter String fields are used for specifying search criteria in the current summary report view.

  • Page 44: For Double-Break Reports Only

    ONFIGURE EST THE NTERPRISE EPORTER NOTES: For pie or bar chart selections, “PDF” displays grayed out since this is the only output format available for these report types. Information on report formats can be found in the ‘Methods for exporting a Drill Down Report’ sub-section. For double-break reports only The Amount shown and # Records fields are available in the Export Drill Down Report pop-up box via the Export Report button, and in the Save Custom Report...

  • Page 45: Methods For Exporting A Drill Down Report

    ONFIGURE EST THE Methods for exporting a Drill Down Report A drill down report view can be emailed or viewed in a specified output format via the Export Drill Down Report option. Email option The email option for exporting reports lets you electronically send the report in the specified file format to designated personnel.

  • Page 46: View And Print Options

    ONFIGURE EST THE NTERPRISE EPORTER 4. Click E-mail to send the report to the designated recipient(s). As a result of this action, the Email Report pop-up box now displays information to indicate the report is being generated. WARNING: Large reports might not be sent due to email size restrictions on your mail server.

  • Page 47: View And Print Tools

    ONFIGURE EST THE View and print tools In the browser window containing the report, the tools available via the toolbar let you perform some of the following actions on the open report file: File: • Save (Ctrl+S) or Save As - save the report file to your local drive •...

  • Page 48: Pdf

    ONFIGURE EST THE NTERPRISE EPORTER This is a sample of the Categories report in the PDF format, saved with a .pdf file extension: Categories report, PDF format Examples of other report formats are provided in the Enterprise Reporter Web Client User Guide. B: E PPENDIX XPORT AND...

This manual is also suitable for:

Er hlEr sl

Table of Contents