Detailed Endpoint Security Violation Information

Provides specific information about endpoint security violations on your network.

Table 1. Detailed Endpoint Security Violation Information Data View

Data

Description

Received

Displays the time that Control Manager receives data from the managed product.

Generated

Displays the time that the managed product generates data.

Product Entity

Displays the entity display name for a managed product. Control Manager identifies managed products using the managed product's entity display name.

Product

Displays the name of the managed product.

Example: OfficeScan, ScanMail for Microsoft Exchange

Endpoint

Displays the host name of the computer in compliance of the policy/rule.

Endpoint IP

Displays the IP address of the computer in compliance of the policy/rule.

Endpoint MAC

Displays the MAC address of the computer in compliance of the policy/rule.

Policy/Rule

Displays the name of the policy/rule in compliance.

Service

Displays the name of the service/program in compliance of the policy/rule.

User

Displays the user name logged on to the endpoint when a managed product detects a policy/rule compliance.

Enforcement Action

Displays the action enforced by the policy/rule.

Remediation Action

Displays the action that helps stop payload caused by the violation.

Description

Detailed description of the incident by Trend Micro.

Detections

Displays the total number of policy/rule compliances managed products detect.

Example: A managed product detects 10 compliance instances of the same type on one computer.

Detections = 10
Parent topic: Policy/Rule Violation Information