Accessing Dashboards and Reports from Insights

Describes how to access the Forcepoint Data Security Cloud | SSE Dashboards, Alerts, and Logs from the Insights.

Insights provides administrators with access to intuitive, product-specific dashboards and comprehensive logging capabilities. By simplifying the management of security operations through customizable dashboards, automated reporting, and real-time event analysis, Insights enables organizations to swiftly respond to security events and streamline compliance requirements.

Following key features are available in the Insights:
  • Predefined Dashboards: Provide comprehensive CASB API, CASB Inline, or SWG dashboards that visualize SaaS and Internet Access traffic, enabling teams to quickly surface and interpret key insights. Here are the predefined dashboards available in Insights:

    To learn more about this, see the Insights Home page.

  • Customizable Dashboards: Admin can create tailored dashboards to suit their unique monitoring and reporting needs, enabling deeper visibility into key metrics and trends.

    To learn more about this, see the Catalog page.

  • Predefined Transaction Viewer: Admins can access predefined views in the Transaction Viewer for CASB Inline, SWG, and CASB API logs. Also, provide consistent and familiar experience while leveraging the performance and usability of the new platform.

    To understand more about Insights collections for Forcepoint Data Security Cloud | SSE, see the following table:

    Table 1.
    Insights collection name Description
    Proxy Logs of all user activities (events, logs, etc.) in all protected applications associated with inline access control and DLP policies are collected under CASBInline and DLP collections.
    CASBAPI Logs of data at rest in cloud applications integrated via API .
    SWG
    • Web Access
    		 All web browsing event logs generated by users using the SmartEdge Agent and Cloud SWG while accessing websites.

    Web Access is predefined view for SWG collection.
    SWGDLP Logs of data related to DLP policies configured for SWG traffic.
    ZTNA Logs of all agent-based (TCP) ZTNA events.
    Admin All admin activity logs within theForcepoint Data Security Cloud | SSE portal.
    Health
    • Health API
    • Health System

    Logs of any CASB API-related errors received from the cloud application are collected under the Health API predefined view.

    Captures errors during user provisioning via API, including failures in creation, updates, deletions, or data retrieval via API are collected under the Health System predefined view.
    Note: The Health Proxy and Web Debug log types will no longer be available.

    To learn more about this, see the Transaction Viewer page.

  • Customizable Transaction Viewer: Admins can define custom filters, views, and sorting criteria within the Transaction Viewer. This flexibility supports targeted searches and advanced analysis of activity and audit logs across environments.

    To learn more about this, see the Transaction Viewer page.

  • Scheduled Reporting: Allows administrators to automate the delivery of reports to designated recipients on a defined schedule. With flexible frequency options daily, weekly, or monthly and support for multiple export formats, such as PDF and CSV, the scheduler ensures that stakeholders receive timely and relevant insights without requiring manual effort.

    To learn more about this, see the Scheduler page.