DeviceLock Service : Managing DeviceLock Service for Windows : Service Options : Auditing & Shadowing : Audit log type
  
Audit log type
Using this parameter you can define what logs should be used to store audit records.
There are three options to choose:
Event Log - The standard local Windows Event Log is used to store audit records.
DeviceLock Log - The protected proprietary log is used to store audit records. The data from this log is sent to DeviceLock Enterprise Server and is stored centrally in the database.
Syslog - Audit records are sent to the syslog server.