Viewing the event log

17 May 2024

ID 220659

The event log displays events that occur on managed devices and general events. This information is available on the Information panelEvent log tab of Kaspersky Endpoint Security Cloud Management Console.

The event log contains columns with the following details:

  • Severity.

    Event severity, in descending order:

    • A red exclamation mark in a red square (Critical event)

      A critical event indicates a problem that may lead to data loss, an operational malfunction, or a critical error.

    • A red cross in a red circle (Functional failure)

      A functional failure indicates a serious problem, error, or malfunction that occurred during the operation of the application.

    • A yellow exclamation mark in a yellow triangle (Warning)

      A warning is not necessarily serious, but nevertheless indicates a potential future problem.

    • A blue exclamation mark in a blue circle (Informational event)

      An informational event notifies about the successful completion of an operation or a procedure, or of the proper functioning of the application.

  • Event category and description.

    Category and description of the occurred event. For example, after you add a user account to the list of users, the log displays an event with the category "User has been added" and the description "A user with alias <user alias> and email address <email address> has been added".

  • Date and time.

    Date and time when the event was registered in the event database. The value displays the time of the device operating system on which Management Console opens.

  • User and device.

    Name of the device on which the event occurred, and email address or alias of the device owner.

By default, the event log does not display any data.

To view events in the list,

Click the Retrieve latest events button.

You can filter the event log.

By default, the quick filter is displayed. It allows you to filter the displayed records by the event severity.

To apply the quick filter to the event log,

Next to Show events, click the link with the required severity.

To remove the quick filter,

Click the All link.

To apply the extended filter to the event log:

  1. Click Extended filter to use the extended filter.
  2. Select the required values in the drop-down lists:
    • Period.

      The period over which events occurred.

    • Event severity.

      The severity of events.

    • Type.

      The type of devices on which events occurred. The list contains operating systems for protected devices and General for other events.

You can sort the event log by any column.

To sort the event log,

Click the link containing the column name.

The column name is displayed in uppercase characters. Next to the name of the column, an up arrow (˄) indicates the sorting direction. To change the sorting direction, click one more time. Next to the name of the column, a down arrow (˅) appears.

By default, the event log is sorted by the Date and time column.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.