Review system and security events detected by your deployed TrendAI Vision One™ Endpoint Security agents.
The Endpoint Event Viewer provides a centralized location where you can view both system and security events
detected on managed endpoints across your organization. The Endpoint Event Viewer
collects information from the XDR and security features on your
TrendAI Vision One™ Endpoint Security agents for all deployment configurations.
The Endpoint Event Viewer sorts events into various lists depending on the feature
which detected the event. By default, accessing the Endpoint Event Viewer opens the
System events list. To locate specific events, you can search by endpoint name or filter by each
column. You can also export the current list to CSV.
Event lists
|
Category
|
Event list
|
Description
|
|
System events
|
System events
|
Lists the system events detected on the endpoint
This list details events occurring on the endpoint observed by the agent or endpoint
system. You can use the system events list to find possible anomalies that are otherwise
not normally detected as security events.
|
|
Threat Prevention
|
Anti-Malware
|
Lists Anti-Malware detection events and identified files
This list details security events detected on endpoints with Anti-Malware enabled.
You can also view and manage identified and quarantined files using the Identified
file event view.
|
|
Web Reputation
|
Lists Web Reputation detection and security events
This list details security events detected on endpoints with Web Reputation enabled.
|
|
|
Intrusion Prevention
|
Lists Intrusion Prevention detection and security events
This list details security events detected on endpoints with Intrusion Prevention
enabled.
|
|
|
Access Control
|
Application Control
|
Lists Application Control detection and security events
This list details security events detected on endpoints with Application Control enabled.
|
|
Device Control
|
Lists Device Control detection and security events
This list details security events detected on endpoints with Device Control enabled.
|
|
|
Firewall
|
Lists Firewall detection and security events
This list details security events detected on endpoints with Firewall enabled.
|
|
|
Advanced Capabilities
|
Log Inspection
|
Lists Log Inspection detection and security events
This list details security events detected on endpoints with Log Inspection enabled.
|
|
Integrity Monitoring
|
Lists Integrity Monitoring detection and security events
This list details security events detected on endpoints with Integrity Monitoring
enabled.
|