|
|
This topic is intended for TOS Administrators. |
To get full accountability details (who made policy changes and when), and to utilize rule and object usage reporting, you must get your monitored devices to send syslogs to TOS.
These monitored devices can be set up to send additional information to TOS, such as:
Last hit field in the Rule Viewer.
Accountability information such as the users who made policy changes and the computer used to make the change
Details of the applications that pass traffic through the device - can be seen in SecureApp
Notifications to TOS that a security configuration change has occurred, enabling TOS to fetch the updated policy (revision) from the device immediately, rather than wait for the periodic polling