Log management

The Administration > Log management page provides access to an exported log file of the past 30 days of traffic.

The log file is uploaded to a Forcepoint-provided Amazon Web Services (AWS) S3 bucket. Access details are provided on the page, allowing you to access the log, or configure automatic log download.

Logs are provided in JSON format. Entries older than 30 days are removed from the file.

Note: In future releases, native SIEM log formats will be supported.

The Log Export Status section shows the following information:

Log forwarding status: indicator showing the current status of the log forwarding service
Last sync: the date and time of the last log upload

The Log Export Settings section provides configuration settings for the log export process and access details for the AWS S3 bucket:

Log forwarding: this option is selected and grayed out (log forwarding is enabled by default)
Log storage: Forcepoint-provided AWS S3 bucket
Region: the AWS region where logs are hosted for your account
Log export file format: JSON
Log retention time period: 30 days
AWS S3 file path: the path location for the log export file