Recommended Views
The recommended views provide a selection of the most useful predetermined views. Use the views to review collected data and make informed decisions around policy editing.
Recommended views are available for events and applications.
- To access the views, go to Analytics.
- Click the Events or Applications tab.
- Click Load View, and then click the Recommended Views tab.
Events
Recommended views for events load with the default filters.
Name | Description |
---|---|
Process Details |
Find every process that EPM is controlling, with flexible filtering options, to zone in on the data of interest. The report name in legacy reporting: Process Details |
User Interactions |
Overview of how much friction end users are experiencing, and improve their experiences without jeopardizing security. The report name in legacy reporting: User Experience |
Privileged Group Protection |
Shows when EPM has prevented a user modifying a privileged group. For example, adding a user to the Admins group. All events where EPM prevented users from modifying privileged groups. The report name in legacy reporting: Privileged Account Management |
Applications
Recommended views for applications load with the default filters.
Name | Description |
---|---|
Discovered: Active Applications |
To help build the Passive Allow and the Add Admin definitions. This view is used for implementation as it displays all the events captured by the (Default) rules. The report name in legacy reporting: Target Types |
Discovered: by Publisher |
To view discovered applications aggregated by Publisher, to decide if you want to treat all applications from that publisher the same way in policy and take that action. The report name in legacy reporting: Discovery by Publisher |
Discovered: by Requiring Admin Rights |
To see the applications that require admin rights and how they are granted, so you can track down genuine admins and what they are running. The report name in legacy reporting: Discovery Requiring Elevation |
Discovered: from External Sources |
Discover applications run from riskier places, to ensure the applications are not allowed admin rights. The report name in legacy reporting: Discovery from External Sources |
Discovered: New and Uncategorized |
Find the new and uncategorized applications running in your estate. Take action to add the applications to a category (add to a more specific application group). The report name in legacy reporting: Discovery All |