Rules

While we pride ourselves on our intelligent algorithms that are able to automatically identify behavior that is abnormal for your systems, we also provide a wide range of rules written by experts in the log analysis field.

These rules are provided for Windows events as well as Linux/Unix events, Cisco products and much more and cover a wide range of topics. From failed logins, to application errors, port scan warnings, configuration changes, and much, much more. 
The rules can be enabled or disabled to suit your needs, and can all trigger either immediate email alerts or hourly, daily, or weekly email digests.

It is also possible to create custom rules. Based on the same rule creation steps as you are used to in email applications, you can create rules and alerts that span all devices and networks monitored by InspektOne. They will be executed in real-time against the incoming data, and can be set to only show up for certain users of the portal.