User action details

DeviceLock Reports : Report Categories and Types : User Dossiers : User Card : User action details

User action details

The user activity charts are followed by lists of files the user attempted to send, receive, or print (at most 10 files in each list). The contents of the lists depend upon which DeviceLock logs the files are registered in. For files registered in the Shadow log, the user card can list top largest files along with their size. For files that are registered in the Audit log, it can list the files that the user most frequently attempted to send, receive, or print, along with the number of attempts. The following file lists are provided:

•Top 10 types of incoming and outgoing files by file size - Two-column lists. The first column lists the file type descriptions. The second column displays the total size of the files of each type. Up to four lists can be displayed:

•Top Allowed Incoming File types - A list of file types that the user was allowed to receive.

•Top Denied Incoming File types - A list of file types that the user was not allowed to receive.

•Top Allowed Outgoing File types - A list of file types that the user was allowed to send.

•Top Denied Outgoing File types - A list of file types that the user was not allowed to send.

Each list includes up to 10 file types of the largest total file size. The lists are based on data from the Shadow log. If the log contains no data regarding a particular category of files (Allowed / Denied, Incoming / Outgoing), the card does not display the respective list(s).

•Top 10 incoming and outgoing files by file size or by number of attempts - Two-column lists. The first column lists the names of the files the user attempted to send or receive. The second column displays either the size of the file or the number of attempts to send or receive that file. Up to four lists can be displayed:

•Top Allowed Incoming Files - A list of files that the user was allowed to receive.

•Top Denied Incoming Files - A list of files that the user was not allowed to receive.

•Top Allowed Outgoing Files - A list of files that the user was allowed to send.

•Top Denied Outgoing Files - A list of files that the user was not allowed to send.

Each list includes up to 10 files of the largest size or up to 10 files with the largest number of attempts to send or receive. Lists showing file sizes are based on data from the Shadow log. Lists showing a number of attempts are based on data from the Audit log. If the log contains no data regarding a particular category of files (Allowed / Denied, Incoming / Outgoing), the card does not display the respective list(s).

To switch between viewing the list by file size / number of attempts, click the following item in the list header:

•Click Show by Quantity to view a list of files with the largest number of attempts.

•Click Show by Size to view a list of files of the largest size.

This switch is available if the Shadow log contains sufficient data to build the list of files. Otherwise, the files are listed by the number of send / receive attempts, and the items Show by Quantity and Show by Size are not displayed.

•Top 10 printed files by file size or by number of attempts - Two-column lists. The first column lists the names of the files the user attempted to print. The second column displays either the size of the file or the number of attempts to print that file. Up to two lists can be displayed:

•Top Allowed Printed Files - A list of files that the user was allowed to print.

•Top Denied Printed Files - A list of files that the user was not allowed to print.

Each list includes up to 10 files of the largest size or up to 10 files with the largest number of attempts to print. Lists showing file sizes are based on data from the Shadow log. Lists showing a number of attempts are based on data from the Audit log. If the log contains no data regarding a particular category of files (Allowed / Denied), the card does not display the respective list(s).

To switch between viewing the list by file size / number of attempts, click the following item in the list header:

•Click Show by Quantity to view a list of files with the largest number of attempts.

•Click Show by Size to view a list of files of the largest size.

This switch is available if the Shadow log contains sufficient data to build the list of files. Otherwise, the files are listed by the number of print attempts, and the items Show by Quantity and Show by Size are not displayed.

Next on the user card are two lists of rules that denied or allowed the transfer of certain content for this user / detected the transfer of content (Content-Aware Rules):

•Top Allowed Content-Aware Rules - The most frequently triggered rules that allowed or detected the transfer of content.

•Top Denied Content-Aware Rules - The most frequently triggered rules that denied the transfer of content.

The number of times each rule triggered is counted jointly for devices and protocols. Content detection rules are considered rules that allow the transfer of content.

The list includes up to 10 rules that triggered most frequently. For each rule, the list displays the name of the rule and the total number of times the rule triggered.

Then the user card provides information on the exchange of files and data with the user’s contacts:

•Top Contacts - The contacts that the user most frequently exchanged files and data with. For each contact, the list provides the following information:

•The name of the contact.

•The total volume of data sent to of received from this contact. Displays only if the respective data exists in the Audit log and/or Shadow log.

•The total size of files sent to or received from this contact. Displays only if the respective data exists in the Audit log and/or Shadow log.

•The total number of communications with this contact.

The list includes up to 10 contacts with the largest number of communications.