Novell ZENworks Endpoint Security Management 3.5 Manuale Utente

ZENworks® ESM 3.5

Administrator’s Manual

34

Alerts monitoring requires reporting data be collected and uploaded at regular intervals to give the 
most accurate picture of the current endpoint security environment. Unmanaged ZENworks 
Security Clients do not provide reporting data, and will therefore not be included in the Alerts 
monitoring.

Reporting should be activated in each security policy. See “Compliance Reporting” on page 204 
for details on setting up reporting for a security policy. Adjust report send times to an interval that 
will give you consistent updates on endpoint status. Additionally, an alert will not activate without 
a report. Any activity you wish to be alerted to, must have an appropriate report assigned to it in 
the security policy.

By default, the ESM Reporting service syncs every 12 hours. This means that reporting and alerts 
data will not be ready until 12 hours have passed from installation. To adjust this time frame, open 
the Configuration tool (see “Scheduling” on page 29), and adjust the Client Reporting time to the 
number of minutes appropriate for your needs and your environment.

When data is needed immediately, the Service Synchronization option in the Configuration tool 
can immediately lynch the Policy Distribution Service (which collects the reporting data from the 
endpoints) and the Reporting Service, which will update all alerts based on the newly collected 
data. See “Service Synchronization” on page 32 for details.

Alert triggers can be adjusted to thresholds that fit your corporate security needs. To adjust alerts 
from their defaults, perform the following steps:

Step 1: Select an alert from the list and click the Configuration tab on the right (see Figure 13).