When you contact Technical Support, Kaspersky experts may ask you to provide event and audit logs. In the Kaspersky Thin Client interface, you can forward logs to a log server, from where the experts can download them.
The log server must first be deployed in your organization's infrastructure. For detailed information on server deployment, please refer to the Administrator's Guide for this server.
The maximum file sizes for the event log and audit log are 150 MB and 512 MB, respectively. When the file size of the event or audit log reaches its corresponding limit, Kaspersky Thin Client deletes the existing logs and starts to record new ones. Each time event and audit logs are updated, the current version of Kaspersky Thin Client is recorded at the beginning of the log.
To forward Kaspersky Thin Client audit and event logs:
Tools. Event log section
This displays information about registered events of Kaspersky Thin Client.
If Kaspersky Thin Client is a member of an administration group and is centrally controlled through the Web Console, and the Enforced function is enabled, the Event log forwarding address field will contain the value set by the Kaspersky Security Center administrator that cannot be changed.
We recommend verifying the correct address of the destination server to which you are sending logs. If the wrong address is indicated, logs could be sent to unauthorized third parties. If this is the case, the confidentiality of the data they contain could be compromised.
If Kaspersky Thin Client is not included in an administration group and you are forwarding audit and event logs to a log server for the first time, check the settings of the certificate being added in the opened Add certificate window and click the Add certificate button. The certificate will be added to the system certificate store of Kaspersky Thin Client and will be used for subsequent connections.
Kaspersky Thin Client audit and event logs will be forwarded to the specified server.
Page top