I am trying to create a Custom Report to show all Executables coming in and out of PA. We do have a few .EXE files that are allowed to run through the network. Is there no way to exclude these from the report by file name?
File Name != abcd.exe
I'm afraid our custom reports don't have the granularity built in to allow you to filter out a given file in the manner you describe. A solution for this can be achieved by exporting the logs and using a 3rd party reporting app. You could for instance direct the logs to a syslog server and use something as simple as a spread sheet package or on the other end of the spectrum a highly granular reporting tool (please note I am being careful not to name any vendors product). Once the logs are on your syslog server you wont need to worry about them being deleted and you can manipulate the data as needed.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!