Security‑conscious companies need to manage security logs. Attempting to manage logs is a problematic task for several reasons:
Manually gathering and archiving information from various logs on numerous computers or devices is time consuming.
Analyzing critical events requires time, effort, and security expertise, which is difficult to accomplish with distributed logs and an inexperienced staff.
Meeting government regulations to ensure the privacy of information or other audit requirements involves accurately documenting and reporting on security events.
Agent Manager uses data collection rules to easily gather data from various logs across your enterprise network and store this data on the Sentinel server for archival and reporting.