Procedure

1. Navigate to Networked Computers → Client Management or Logs → Networked Computer Logs → Security Risks.
2. In the client tree, click the root domain icon () to include all clients or select specific domains or clients.
3. Click Logs → Data Loss Prevention Logs or View Logs → DLP Logs.
4. Specify the log criteria and then click Display Logs.
5. View logs.
   Logs contain the following information:

   Data Loss Prevention Log Information

   Column	Description
   Date/Time	The date and time that OfficeScan logged the incident
   User Name	The user name logged on to the computer
   Computer	The name of computer where OfficeScan detected the transmission
   Domain	The domain of the computer
   IP	The IP address of the computer
   Rule Name	The rule name(s) that triggered the incident Note Policies created in a previous version of OfficeScan display the default name of LEGACY_DLP_Policy.
   Channel	The channel through which the transmission occurred
   Process	The process that facilitated the transmission of a digital asset (the process depends on the channel) For details, see Processes by Channel.
   Source	The source of the file containing the digital asset, or channel (if no source is available)
   Destination	The intended destination of the file containing the digital asset, or channel (if no source is available)
   Action	The action taken on the transmission
   Details	A link which includes additional details about the transmission For details, see Data Loss Prevention Log Details.

6. To save logs to a comma-separated value (CSV) file, click Export to CSV. Open the file or save it to a specific location.