Viewing a Report
When you expand the node representing a discovery task in the console tree, and select a report under that node, the details pane displays report pages. Another way to view a report is by using the Open command on the shortcut menu or by double-clicking the report list item in the details pane.
The shortcut menu on a report in the console tree includes the following commands:
•Open - Displays the report in the details pane.
•Rename - Changes the name of the report. You can specify a new name in the dialog box that appears.
•Delete Report - Deletes the selected report.
•Refresh - Updates the report in the details pane.
DeviceLock Discovery Server generates multi-page reports in HTML format.
Note: If JavaScript is not enabled in your Web browser, the following error appears when viewing a report: “For full functionality of this page it is necessary to enable JavaScript. See your web browser manual or help on how to enable JavaScript.” To view reports, enable JavaScript in your Web browser. For instructions, see the “How to enable JavaScript in your browser” guide at
http://www.enable-javascript.com. |
Discovery Server allows automatic or manual generation of reports using data returned by scanning agents. Use reports to arrange and display information about discoveries and actions performed by the scanning agents.
Reports are created automatically by the tasks. You can also generate reports manually by using DeviceLock Management Console.
The report contains detailed information about the results of the scan.
The first page of the report may contain the following information:
•Header - Displays the name of the report, and contains information about when the scan started and finished, the name of the user who requested the report, and the name of the computer from which the report was initiated.
•Discovery results - Contains a summary of discovery results and actions performed on the discovered content. If the discovery task did not make any discoveries, this section displays Discovery results: None.
Information in this section includes:
•Object Name - Lists the rules along with the units in which the rule made a discovery.
In the list of rules and units, the report displays the following information:
•Log - Indicates how many discovery events have been logged.
•Alert - Indicates how many administrator alert about the discovery have been sent.
•Notify - Indicates how many user notifications about the discovery have been displayed.
•Delete - Indicates the number of occurrences where detected content has been deleted.
•Encrypt - Indicates the number of occurrences where detected files have been encrypted.
•Set Permissions - Indicates the number of occurrences where file access permissions on detected content have been modified.
•Warnings - Indicates the number of file access errors, content analysis errors and errors applying actions to discovered files.
•Rules - This section contains descriptions of all rules specified in the task, including those not included into the Discovery results table.
•Failed to scan - If the discovery task was unable to scan any of its target computers and/or Elasticsearch nodes, the report contains a summary of errors:
•Unit/Target - A list of units with the computers/nodes that failed to scan.
•Error message - A description of the error due to which the computer/node failed to scan.
•Date/Time - The date and time that the error occurred.
Note: Many items in the report are clickable links. Clicking a certain element may open a page with information on the item you clicked), or open the log viewer with a pre-filled filter to display all records relevant to the item you clicked. For example, clicking the number in the Total line opens the log viewer that displays all actions calculated in the referring table. For more information and instructions on how to work with reports, see
Navigating Reports. |
You can click the plus sign [+] on the left of each object to expand. To expand all objects, click the plus sign [+] on the left of the Object Name heading.
Subsequent report pages contain detailed information, including:
•Header - Displays the name of the report, and contains information about when the scan started and finished, the name of the user who requested the report, and the name of the computer from which the report was initiated.
•Discovery results - Lists the scanned targets (computers and Elasticsearch nodes). The list can be expanded by clicking the name of a target. This will display a list of discovered files.
Note: You can switch the order in which targets and files are displayed, making file names appear as expandable branches and target names as leaf items. The list display depends on the type of the link you clicked to get to this report. For more information on the report items display, see
Navigating Reports. |
Information in this section includes:
•Object Name - Displays target names and file names, depending on the view mode. Either targets are listed, each of which has an associated list of files discovered on it, or files, each of which has an associated list of targets on which this file was discovered.
In the list of targets and files, the report displays the following information:
•Log - Indicates how many discovery events have been logged.
•Alert - Indicates how many administrator alert about the discovery have been sent.
•Notify - Indicates how many user notifications about the discovery have been displayed.
•Delete - Indicates the number of occurrences where detected content has been deleted.
•Encrypt - Indicates the number of occurrences where detected files have been encrypted.
•Set Permissions - Indicates the number of occurrences where file access permissions on detected content have been modified.
•Warnings - Indicates the number of file access errors, content analysis errors and errors applying actions to discovered files.
Note: Some report items can be clicked. Clicking a file name or target name will display the list of associated targets or files, whereas clicking an underlined number will open the Log Viewer. For more information and instructions on how to work with reports, see
Navigating Reports. |
Flat table view is also available that lists either all discovered files or all targets where at least one file with the desired content was discovered. Such a report does not contain nested lists of different levels, but by clicking on a file, you can open a list of targets where this file was discovered, and clicking a target can open a list of files discovered on this target.
In the flat table view, the following information is available:
•Header - Displays the name of the report, and contains information about when the scan started and finished, the name of the user who requested the report, and the name of the computer from which the report was initiated.
•Discovery results - Lists the files and targets (computers and Elasticsearch nodes) discovered by the combination of units and rules. This list can be displayed in one of the following views depending on the link used to get to the flat table view:
•Object Name:
•Targets for <file name> for <unit name> and <rule name> - Lists the targets on which a certain file was discovered by a certain rule in a certain unit.
- OR -
•Targets for <file name> for <rule name> - Lists the targets on which a certain file was discovered by a certain rule.
- OR -
•Data for <target name> for <unit name> and <rule name> - Lists the files discovered on a certain target by a certain rule for a certain unit.
- OR -
•Data for <target name> for <rule name> - Lists the files discovered on a certain target by a certain rule. If a file has more than one name (has different aliases), the number of aliases is displayed in parenthesis next to the file name.
In all of these views, the file, target, rule, and unit names are specified by the <file name>, <target name>, <rule name>, and <unit name> variables, respectively.
In the list of resources and files, the report displays the following information:
•Log - Indicates how many discovery events have been logged.
•Alert - Indicates how many administrator alert about the discovery have been sent.
•Notify - Indicates how many user notifications about the discovery have been displayed.
•Delete - Indicates the number of occurrences where detected content has been deleted.
•Encrypt - Indicates the number of occurrences where detected files have been encrypted.
•Set Permissions - Indicates the number of occurrences where file access permissions on detected content have been modified.
•Warnings - Indicates the number of file access errors, content analysis errors and errors applying actions to discovered files.
One more report type is alias view. If the task discovered several files with the same content but different names, these names are referred to as aliases. The alias report lists the aliases of the discovered files. Clicking an alias of a file displays a list of targets on which the file was discovered. You can also display this list by clicking the plus sign [+] next to the alias.
The alias view has two tables. The first is the alias table, the second is a list of resources (computers and Elasticsearch nodes) on which the file with a given alias from the first table was discovered. In the alias view, the following information is available:
•Header - Displays the name of the report, and contains information about when the scan started and finished, the name of the user who requested the report, and the name of the computer from which the report was initiated. The header also contains information about the report’s unit, rule, and target.
•Aliases - Lists the aliases (different names of the same file) discovered by the combination of units and rules on a given target. This information includes:
•Object Name - All the names of the discovered file. For each name, the report lists the targets on which the file was found under that name.
In the list of files, the report displays the following information:
•Log - Indicates how many discovery events have been logged.
•Alert - Indicates how many administrator alert about the discovery have been sent.
•Notify - Indicates how many user notifications about the discovery have been displayed.
•Delete - Indicates the number of occurrences where detected content has been deleted.
•Encrypt - Indicates the number of occurrences where detected files have been encrypted.
•Set Permissions - Indicates the number of occurrences where file access permissions on detected content have been modified.
•Warnings - Indicates the number of file access errors, content analysis errors and errors applying actions to discovered files.
•Discovery results - Lists the targets where a given file was discovered under the names specified in the table of aliases. This information includes:
•Object name - All targets containing a particular file are listed under the respective file name.
In the list of targets and files, the report displays the following information:
•Log - Indicates how many discovery events have been logged.
•Alert - Indicates how many administrator alert about the discovery have been sent.
•Notify - Indicates how many user notifications about the discovery have been displayed.
•Delete - Indicates the number of occurrences where detected content has been deleted.
•Encrypt - Indicates the number of occurrences where detected files have been encrypted.
•Set Permissions - Indicates the number of occurrences where file access permissions on detected content have been modified.
•Warnings - Indicates the number of file access errors, content analysis errors and errors applying actions to discovered files.