Endpoint Security Reporting Settings

This page lets you determine which report data the Endpoint Security Agent sends to the ZENworks server. You can also configure send options such as how often reports are sent, how many are sent at one time, and the locations from which the reports can be sent.

You can configure the reporting settings at three levels:

  • Management Zone: The reporting settings you define at the Management Zone are used for all devices, unless you override the settings at a device folder or individual device.

  • Device Folder: The reporting settings you define at a device folder override the Management Zone (and any parent device folders). All devices within the folder use the settings, unless you override the settings on an individual device.

  • Device: The reporting settings you define for an individual device override the Management Zone and device folder settings.

To configure the reporting settings:

  1. If you are configuring the reporting settings for a device or folder, click Override settings to activate the panel.

  2. In the Endpoint Security Reports section, select Effective Policy.

    Currently, the Effective Policy report is the only available report. A device’s Endpoint Security Agent creates an Effective Policy report any time an effective policy for the device changes. For example, if the device’s Firewall effective policy changes, a new report is generated. Or, if the device’s Storage Device Control effective policy changes, a new report is created.

  3. In the Interval for Sending Reports to Server section, configure at least one of the following settings to enable the Endpoint Security Agent to send reports:

    Use Time Interval: Select this option if you want reports sent on a time interval, then specify the interval.

    Use Size Interval: Select this option to send reports whenever the combined size of all report files reach the specified size. The report file size varies based on the number of policy types (Firewall, Data Encryption, and so forth) applied to the device and the amount of data associated with each policy type. Specify the size in kilobytes (for example, 512 KB or 2048 KB). The Endpoint Security Agent evaluates the size of the files every 2 minutes.

    You can use one or both intervals. For example, if you set the time interval to 2 days and the size interval to 512 KB, the report files are sent every 2 days. If the files reach 512 KB at some point in the 2 day interval, they are sent at that point as well.

  4. In the Throttling for Sending Reports to Server section, configure the following settings:

    Enable Throttling for Sending Reports: Select this option to turn on throttling. Throttling lets you limit the amount of report data that the ZENworks Server accepts from a single device at one time. You can use this to limit server congestion and maintain the performance of your ZENworks Server.

    Maximum Number of Reports to Send: Specify the maximum number of reports to send during one session. For example, assume that you set the time interval to 2 days and this option to 10 reports. Every 2 days, a maximum of 10 reports are sent regardless of the number of reports that are in the queue. Any remaining reports are saved until the next session two days later.

    Interval Before Sending Next Set of Reports: If you want to force all reports to be sent during the current session rather than waiting for the next scheduled session, specify the amount of time to wait before sending the next set of reports. Continuing the example introduced above, it you set this option to 4 hours, the first 10 reports would be sent, the second 10 reports would be sent 4 hours later, and the final 5 reports would be sent four hours after the second set.

    If you are using a time interval to initiate when reports are sent, make sure that this setting is less than that time interval.

  5. In the Locations for Sending Reports to Server, select the Send reports when the device is in the selected locations option if you want to limit the locations from which reports can be sent, then click Add to add the locations that are allowed.

    If you add locations to the list, reports are sent only when the device is in one of the locations and the time or size interval (see Step 3) is met.

  6. In the Delete/Retain Reports section, configure the following settings:

    Don’t Send if Older Than: Use this option to set an expiration date for unsent reports. Any unsent reports older than the specified age are deleted. This option is useful if you have devices that go long periods of time without connecting to the Management Zone and you don’t want to collect old reports from them. Leave the fields blank to send all reports regardless of age.

    Delete Reports from Device When Successfully Sent to Server: Select this option to delete reports after they are sent.

    Retain Reports on Device for: Select this option to retain reports after they are sent. The reports are moved to an archive folder and retained for the time period you specify. After that time period expires, they are deleted.

  7. Click OK to save the changes.

For trademark and copyright information, see Legal Notice.