Audit Log Filter (Server)

You can filter data in Audit Log Viewer (Server) so that only records that meet specified conditions are displayed in the list.

There is not much difference between the service's audit log filter and the server's audit log filter, so first read the Audit Log Filter (Service) section of this manual.

In comparison with the service's audit log filter, the server's filter has the following additional fields:

- Computer - this text matches a value in the Audit Log Viewer's Computer column. This field is not case-sensitive and you may use wildcards. You can enter multiple values separated by a semicolon (;).

- Event ID - this number matches a value in the Audit Log Viewer's Event column. You can enter multiple values separated by a semicolon (;).

- Received Date/Time - specifies the time period to filter events based on when they were received by DeviceLock Enterprise Server. From: specifies the earliest date and time from which you want events while To: specifies the latest date and time from which you want events. The possible values of the From: parameter are: First Event, Events On. Select First Event to see events starting with the first event received by DeviceLock Enterprise Server. Select Events On to see events that were received starting with a specific date and time. The possible values of the To: parameter are: Last Event, Events On. Select Last Event to see events ending with the last event received by DeviceLock Enterprise Server. Select Events On to see events that were received ending with a specific date and time.

• English-to-Russian translation