Views:

Trend Vision One maintains user logs that provide summaries about user access, app-related actions, setting changes, and other configuration modifications on the console, as well as login and logout activities on the Service Gateway.

The following table outlines the available user log information.
Data
Description
Logged
The date and time the activity occurred
Account
The name of the Trend Vision One user account, API key, or local account on the Service Gateway
Role
The role of the account
Note
Note
Role is not available for the local account on the Service Gateway.
Source
The source of the activity
Possible sources include:
  • API
  • Console
  • Service Gateway
Category
The category of the activity
Possible categories include:
  • Logon and Logoff
  • SAML Single Sign-On
  • Account Management
  • Product Connector
  • Notifications
  • Detection Model Management
  • Workbench
  • Response Management
  • Third-Party Integration
  • Threat Intelligence
  • Reports
  • Security Playbooks
  • API Keys
  • Console Settings
  • Support Settings
  • Service Gateway Management
  • ServiceNow
  • Support Request
  • Network Intrusion Prevention
  • User Roles
  • Trend Companion
  • Container Security
  • Phishing Simulation Assessment
  • Cloud Accounts
  • Identity Providers
  • Case Management
  • Security Awareness App
  • Domain Verification
  • Platform Directory
  • Asset Visibility Management
  • Forensics
  • Mobile Security
  • Network Inventory
  • Attack Surface Risk Management
  • Endpoint Inventory
  • Endpoint Policies
  • Zero Trust Secure Access
  • Sandbox Analysis
  • Observed Attack Techniques
Activity
The activity that was performed
Result
The result of the activity
Details
Details on the activity that was performed