New/Edit Threat Report pane

These settings allow you to define the criteria to be used for creating a Threat report.

The Threat report contains a list of all the viruses detected upon the defined criteria and when viewed displays:

  • Endpoint Name: The name of the endpoint on which the threat was detected

  • Threat: The type of threat detected

  • Infected Filename: The name of the infected file on the endpoint

  • Infection Name: The name of the threat

  • Action Taken: The action taken against the threat

  • Detection Type: The detection type used to identify the threat

  • Detected: Time and date stamp of when the treat was detected

NOTE: For details on how to create a report, see Reporting.

How to Get There

In the Reports page, choose Add > Threat Report.

Options

Save • Cancel

Click Save to save the report settings. Click Cancel to dismiss the pane without making changes.

Name • Description

A name and description for the report you are defining.

Time Range; Last 60 Min...Custom

From this drop-down list, choose the time period to include. Scans within this time range will be included in the report. Choose Custom to specify a start and end time.

Endpoints

Use this filter field to specify the Endpoints you would like to include in the report. For example enter "xyz" to select all Endpoints that contain "xyz" in their alias. You can use multiple filters, separated by a semicolon.

Leave the filter blank to gather data for all Endpoints.

Tags

Endpoints to include on the report can also be selected by the use of assigned tags.

Enter the name of the Endpoint tag that you want to include on the report. Multiple tags can be included. Click in the Tags field to open the Search facility. Type alphanumeric characters to begin searching for endpoint tags. Click 'Add xx' (where xx is the name of the tag) to select the tag for the report.

TIP: Any selected tags can be removed from selection by clicking the 'x' next to the tag name.

Leave the Tags field empty to gather data for all endpoints.

Tags Selection Logic

Tags Selection Logic can be applied to the selected tags using OR or AND boolean logic. Use the Toggle switch to select between OR and AND.

  • OR Filtered endpoints should have any (at least one) of the selected tags assigned

  • AND Filtered endpoints should have all of the selected tags assigned

NOTE: Tags Selection Logic is OR by default.
IMPORTANT: The generated report will only include data for endpoints filtered according to the specified Alias and Tags filters.
Preview Endpoints

Click Preview Endpoints to open a display showing the list of endpoints, specified by the selections in alias and tag filters, that will be included on the report when it is generated.

Recipients; Email • Add

Enter an email address and click Add to include the email in the list of recipients. When email is properly configured in the Email Settings page, upon report generation, the included recipients will receive an email with a PDF attachment of the report.

Scheduler; Off • On

This setting allows you to run the report instance on a schedule automatically. Toggle to Off to disable, or On to enable, the automatic generation and distribution of reports. When set to On, the following fields appear, which allow you to define the frequency and timing of automatic report generation.

Repeat; Monthly • Daily • Day of Week

From this list, choose how often you would like to repeat the process of report generation and distribution.

  • Monthly; Day of Month; First Day • Last Day • Custom

    From this list, choose the day of the month the report should be generated and distributed, first or last. To specify a different day, or list of days, choose Custom. With custom selected, specify one or more days of the month. For multiple days, separate each day with a semicolon.

  • Daily

    Choose this option to run the report each day, at the specified time.

  • Day of Week; list of days

    Select the days the report should run.

Time

Click this field to specify the hour (0-24) and minute (00-60) of the day the reports should be generated and distributed. Use the arrows adjacent to the hour field to increment by hour. Use the arrows adjacent to the minute field to increment by five minute intervals.