| Role Availability | Read-Only | Investigator | Analyst | Manager |
| Field | Values |
|---|---|
| Data Source | ”Windows NxLog”, “AlienVault Agent - Windows EventLog”, “AWS Directory Service”, “ManageEngine ADAudit Plus”, “Azure Windows Events”, “AWSWindows XML”, “AWSWindows”, “Windows PowerShell NxLog”, “Windows SQL NxLog” |
| Reporting Device Rule ID | ”529”, “530”, “531”, “532”, “533”, “534”, “535”, “536”, “537”, “539”, “552”, “644”, “675”, “4625”, “4648”, “4771”, “4740” |
| Category | ”Security”, “Logon” |
- Go to Reports > Compliance Templates.
- On the left navigation pane, click NIST CSF.
- Click Generate Report on the specific line for this report. The Configure Report dialog box appears.
- Click Edit Filters if you want to modify the selected filters, and then click Continue to Filters.
- Make the required modifications, and then click Edit Report.
-
Click the date field if you want to choose a different date range. Choose Last Hour, Last 24 Hours, Last 7 Days, Last 30 Days, Last 90 Days, or Custom Range to set a particular date range.
- Select the Format of the report. It can either be CSV or PDF.
- Select a Schedule for the report if you want to generate it again: Never, Daily, Weekly, Bi-weekly, and Monthly.
- Enter an email address in which to send the report. You may also select the Send to my Email Address option to add your email automatically.
-
Select the Enable link expiration option.
This link is delivered by email and expires in 14 days.
- Click Next.
- In the Report Name field, enter a name for the report. This name will be displayed on the Saved Reports page.
- (OPTIONAL) Enter a Report Description.
- Under the Number of Records section, select the maximum number of records to include in the report: 20, 50, 100, 500, 1000, or 2500.
-
If you have previously chosen the PDF format, you will see the Graphs section, which you can use to include additional views. You can add to or remove graphs from the report by clicking the
and 
icons.
- Click Run to run the report.