Help Center
Quick Start
- Overview
- System requirements
- Minimum privileges required
- Default port configuration
- Installing DataSecurity Plus
- Uninstalling DataSecurity Plus
- Starting DataSecurity Plus
- Launching DataSecurity Plus
- Configuring your solution
- Licensing details
- Applying a license
File Auditing
- About File Auditing
- Domain configuration
- File server configuration
- Failover cluster configuration
- NetApp server configuration
- Workgroup configuration
Setting up File Audit
Dashboard
Reports
Alerts
Configuration
Storage Configuration
File Analysis
- About File Analysis
- On-Demand Reports
Setting up File Analysis
Dashboard
Reports
Alerts
Configuration
Data Risk Assessment
- About Data risk assessment
Setting up Data risk assessment
Dashboard
Reports
Ownership analysis
Configuration
Endpoint DLP
- About Endpoint DLP
Setting up Endpoint DLP
Reports
Alerts
Prevention policies
Configuration
Cloud Protection
- About Cloud Protection
- Gateway Server Configuration
- Certificate Authority Configuration
- Gateway Configuration in Endpoint
- Manage Certificate Trust Store
- Threat Analytics Database
- Manage Banned Applications
- Manage Authorized Applications
- Gateway Server Failover
- Two-way SSL configuration
- Global Insight
- Application Insight
- User Insight
- Shadow Application Insight
- Banned Application Insight
- Cloud App Discovery
- Cloud Access Reports
- Application Insights
- Shadow Cloud Application Reports
- Banned Cloud Application Reports
- File Upload & Download Reports
Setting up Cloud Protection
Dashboard
Reports
Control Policies
Storage Configuration
Administrative settings
- Technician configuration
- Notification filters
- Manage agent
- Agent settings
- SIEM integration
- Business hours configuration
- Two-factor authentication
- Workgroup configuration
- Security policy
Email configuration
General settings
- Connection
- Personalize
- DataSecurity Plus Server
- Privacy Settings
- Disk utilization
- Schedule Retention Policy
Policy Configuration
Release notes
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
Troubleshooting
- HTTP communication failure
- Dormant DataEngine
- Secure Gateway server failure
- RPC communication failure
- Known issues and limitations
- Known errors and solutions
Guides
- Agent document
- How to Migrate/Move DataSecurity Plus
- How to apply SSL certificate
- How to automate DataSecurity Plus database backup
- How to set alerts in DataSecurity Plus
- How to secure your DataSecurity Plus installation
Archive endpoint events
Audit data that is older than a specified time range can be cleared from the primary database, zipped, and archived. Archiving allows you to manage disk space and limit database growth.
The archive process only moves the data from the database to a secondary location; it does not delete the event data. You will still be able to generate reports and analytics for it by loading the archived events onto the console when necessary.
The archive process will happen automatically at user-specified intervals. The schedule runs at 2am to minimize disruptions to your environment.
Editing archive schedules
To view and edit the archive schedule configuration, follow the steps below.
- Log in to the DataSecurity Plus web console as an administrator.
- Select Endpoint DLP from the applications drop-down.
- Navigate to Configuration > Storage Management > Archive Events. The table will show various audit event categories, the size of data in each, the interval (in days) after which each will be archived, and the number of events that will be archived at the next scheduled archive.
- To modify the archive schedules for audit data, enter the number of days after which you want to run the schedule. You can schedule archival at different intervals—between one and 180 days—for each of the below event categories.
- Audit reports
- Email audit reports
- Printer audit reports
- Classification reports
You can also choose to run the schedule at any point between the configured intervals by clicking the Run Now option on the right side of the page.
Note: If the number of events in a category exceeds 3 million, then those events will be archived automatically, even if the specified interval has not been completed. This event archive schedule will run at 2am as well.
Modifying the archive location
The archives can be stored locally on the file server or on a shared drive.
By default, the archived event data will be saved to C:\Program Files (x86)\ManageEngine\DataSecurity Plus\apps\dataengine-xnode\data\archive\endpoint-audit.
To modify this, follow the steps below:
- Navigate to Endpoint DLP > Configuration > Storage Management > Archive Events.
- Provide the new path in the Archive Folder Location field.
Best practice: We recommend changing the archive location as infrequently as possible to enable easier management and ensure faster retrieval.