The endpoint agent has a log collector which works with Windows Event Logs, Syslog, and other logging formats. This performs local log collection back to Field Effect only when the agent is tasked to do so.
Field Effect operates differently than a SIEM solution as we are performing DPI (deep packet inspection) rather than primarily log analysis. We have the capability to retrieve logs on request, which are stored for 90 days.
Field Effect can also retain logs for longer periods if required. See Log Retention for more information.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article