top of page

File Access Logs

file acess logs.png

After file auditing and the related object controls are enabled, the table dedicated to file access events is populated. This table is separate from the standard machine access logs.

From Log Archives > File access logs, a dedicated window can be opened to view file access logs, offering the same filtering, sorting, grouping, and export features available for standard logs.
Specific retention rules for these logs can also be configured, independently from those applied to traditional access logs.

Explain the selected log

This function uses an AI-powered semantic analysis engine to automatically interpret the content of a single Syslog event.​

The system analyzes the message and provides a detailed explanation divided into sections:

  • What happened: describes the detected event in natural language, indicating the user, device, and technical context (e.g., accesses, errors, or modifications).

  • Why it matters: explains the relevance of the event, highlighting risks, vulnerabilities, or security implications.

  • Actions: suggests recommended checks or verifications for managing the event or resolving the issue.

When specific information is not available for a given event, the Wiki tab displays the technical details of the event ID, along with possible alternative actions or suggestions for further investigation.

File Access Logs1.png
File Access Logs2.png

The explanation can be printed or saved using the commands available at the bottom of the window.

AI Analysis

With a dedicated licence, the [AI Analysis] button is available within the log grids.
This feature allows up to 100 events to be sent to the AI engine, which analyses them to identify critical or suspicious logs and produces a contextual evaluation that is also readable by non-expert users.

The purpose is to provide advanced interpretative support, improving the understanding of security logs and speeding up the identification of potentially risky actions.

If more than 100 events are selected, the system reports the excess and processes only the first 100.
The generated report can be printed and exported.

Log
Archives

bottom of page