Set up device control alerts and messages
Sophos Enterprise Console uses events and messages to report when a controlled device is detected or blocked.
If you use role-based administration:
- You must have the Policy setting - device control right to edit a device control policy.
- You cannot edit a policy if it is applied outside your active sub-estate.
When device control is enabled, the following events and messages are logged or displayed by default:
- Device control events are logged on the workstation.
- Device control events are sent to Sophos Enterprise Console and can be viewed in the Device Control - Event Viewer. (To open the event viewer, on the Events menu, click Device Control Events.)
- The number of computers with device control events over a specified threshold within the last seven days is displayed on the Dashboard.
- Desktop messages are displayed on the workstation.
You can also configure Sophos Enterprise Console to send the following messages:
Email alerts |
An email message is sent to the recipients that you specify. |
SNMP messages |
An SNMP message is sent to the recipients specified in your anti-virus and HIPS policy settings. |
To set up device control messaging: