About the Agent Events Screen

To display the Agent Events screen, go to Logs & Reports → Agent Events in the navigation at the top of the web console.

This screen displays a list of events related to applications not in the Approved List on agents managed by Safe Lock Intelligent Manager.

Depending on the feature status, Safe Lock generates a log and performs the action for the events listed in the following table. Event logs contain information from managed agents about files not in the Approved List and any action taken.

Agent events

Event	Feature Status	Safe Lock Action
A file not on an agent's Approved List attempts to run or make changes to the endpoint	Lockdown disabled	Allows the file to run
	Lockdown enabled	Blocks the file and prompts for user action
A storage device (CD/DVD drive, floppy disk, or USB device) attempts to access the endpoint	Device Control disabled	Allows access for the device
	Device Control enabled	Denies access for the device (when the device type is removable device) and prompts for user action

The following table describes the user actions for the events.

User actions

User Action	Description
Add to Approved List	Prevent the file from executing or deny the USB device access to the endpoint for this instance but add the file or USB device to the agent's Approved List. This allows the file to execute or USB device access for subsequent detections.
Ignore	Prevent the file from executing but do not move or change the file.
Quarantine	Prevent the file from executing and hold the file in quarantine for later analysis.
Delete	Prevent the file from executing and delete the file.

$('#title').html($('meta[name=description]').attr('content'));