Drill-down to Log View from Events
Up to 100 logs related to each event can be stored and viewed in Event Manager. Previously, if more logs are needed over a wider time window, or similar activity on other endpoints needs to be checked, a user must navigate to Log View, determine the correct out filters, then manually enter them to find the logs that they are looking for. This feature adds drill-down capabilities in Event Manager that will automatically open Log View with the required filters preset.
To launch Search in Logview from an event in the All Events table:
- Go to Incidents & Events > Event Monitor > All Events.
- Right click on an event.
- Select Search in Logview.
Log View will launch, with the filter automatically filled in with the following information:
- Log type of the event
- Time range (the first to the last occurrence of the event)
- Event trigger and group by value
To launch Search in Logview from an event in the All Incidents table:
- Go to Incidents & Events > Event Monitor > All Incidents.
- Right click on an event.
- Select Search in Logview.
Log View will launch, with the filter automatically filled in.