Table of Contents
Advertisement
Chapter 18: Enterprise Scanner Logs and Alerts
Downloading an Alert Log
Introduction
Three files per log
Procedure
244
If necessary, you can save an Alert log to a file to use for forensic purposes. You can do
that in the Proventia Manager for your agent.
Alerts remain on display on the Alerts log page after you save a log.
Note:
The Alert log is saved in three comma-separated values (.csv) files. The three files cross-
reference the data displayed in the Alerts log:
Log File Name
filename_eventdata.csv
filename_eventinfo.csv
filename_eventresp.csv
Table 93: Three alert log files
To download an Alert log file:
1. On the Alerts page in Proventia Manager, click Generate new log file from Alerts.
The Log File Management page appears.
2. Select a file to download, and then click Download.
A menu prompts, "Are you sure you want to download the file?"
3. Click OK.
4. Select Save, and then click OK.
5. Navigate to the folder where you want to save the file.
6. Type a file name, and then click Save.
Contents
•
the distinct records that match the alert record number
•
the event name and the risk level
The data listed in the event-specific information section of the
alert.
The data from the responses-executed section of the alert.
IBM Internet Security Systems
Advertisement
Table of Contents
