Administration > Event Center
Events refer to actions detected by a managed product and relayed to the Control Manager server. Event Center allows you to configure Control Manager to send notifications about events that occur in the Control Manager network.
Alert - provides warning about viruses and spyware/grayware detected by managed products
The alert event category groups the following types:
Virus outbreak alert - applicable to antivirus managed products
Special virus alert - applicable to antivirus managed products
Special spyware/grayware alert - applicable to anti-spyware/grayware products
Virus found - first action successful and second action unavailable- applicable to antivirus managed products
Virus found - first and second actions unsuccessful - applicable to antivirus managed products
Virus found - first action successful - applicable to antivirus managed products
Virus found - second action successful - applicable to antivirus managed products
Network virus alert - applicable to packet scanning products (for example, Network VirusWall 1200)
Potential vulnerability attack detected - applicable to packet scanning products (for example, Network VirusWall 1200)
Spyware/Grayware found - action successful - applicable to anti-spyware/grayware managed products
Spyware/Grayware found - further action required - applicable to anti-spyware/grayware managed products
Outbreak Prevention Services - provides information about policy application and update information about Outbreak Prevention Services
Outbreak Prevention Services notification type groups the following service events:
Active Outbreak Prevention Policy received
Outbreak Prevention Mode started
Outbreak Prevention Mode stopped
Outbreak Prevention Policy update unsuccessful
Outbreak Prevention Policy update successful
Damage Cleanup Services - provides policy application and update information of Damage Cleanup Services-related events
Damage Cleanup Services notification type groups the following service events:
Damage Cleanup Services task started
Damage Cleanup Services task completed
Vulnerability Assessment - provides "Vulnerability Assessment task completed" event notification
Statistics - provides statistics on the number of host policy violations versus host compliances complied by Network VirusWall devices
Update - provides antivirus and content security components update result (successful or unsuccessful)
Update notification type groups the following component update events:
Scan engine update unsuccessful - applicable to antivirus or anti-spyware/grayware managed products
Scan engine update successful - applicable to antivirus or anti-spyware/grayware managed products
Pattern files/Cleanup templates update unsuccessful - applicable to antivirus or anti-spyware/grayware managed products
Pattern files/Cleanup templates update successful - applicable to antivirus or anti-spyware/grayware managed products
Anti-spam rule update unsuccessful - applicable to content security managed products
Anti-spam rule update successful - applicable to content security managed products
Unusual - provides information about product option or service activation and deactivation
Unusual notification type groups the following events:
Real-time scan enabled — applicable to antivirus managed products
Real-time scan disabled — applicable to antivirus managed products
Product service started — applicable to antivirus and content security managed products
Product service stopped — applicable to antivirus and content security managed products
Security Violation - provides information content or Web security violations
Control Manager can send notification to individuals or groups of recipients. Configure Event Center to send notifications through the following methods:
Syslog - A standard for forwarding log messages in an IP network. Control Manager can direct syslogs to other supported products. For example, Cisco Security Monitoring, Analysis and Response System (MARS).
Email - messages sent to a mailbox belonging to the organization's email system or to a different account (for example, Yahoo or Hotmail)
Control Manager can send notifications to a POP3 account on a mail server with Internet Mail Service or Connector configured properly.
Windows event log - the Windows Event Viewer application log contains events logged by Control Manager
SNMP - an SNMP (Simple Network Management Protocol) trap is a method of sending notifications to network administrators that use management consoles that support this protocol
Control Manager stores notifications in Management Information Bases (MIBs). Use MIBs browser to view SNMP trap notification.
Pager - an electronic device that accepts messages from a special radio signal
MSN Messenger - an online service provided by Microsoft that establishes real-time communication between two users
Control Manager sends notifications to an online MSN Messenger account. Otherwise, an off-line MSN Messenger account cannot receive Control Manager notifications.
Trigger Application - any in-house or industry-standard application used by your organization to send notifications
For example, your organization is using a batch file that calls the net send command. Use the Parameter field to define commands applied by the trigger application.
The application triggered should run in the background to run this notification method successfully.
Customizing notification messages
Configure Event Center Settings