What information does this report provide
The Unusual Data Activity Alerts report provides a consolidated view of all the Unusual Data Activity alerts generated within a specified period for snapshots of different resource types configured for backup in your environment.
This report is available for the following resource types:
Endpoints
NAS
File Server
VMware
OneDrive
SharePoint
How does the report help
With this report, you can proactively identify data anomalies for each resource type's creation, modification, encryption, and deletion actions. With this information available well in time, you can get a consolidated view of the UDA alerts generated within a specific period for each resource type and take corrective actions.
You can leverage this report to:
Get a view of total, active, and resolved alerts for creation, modification, encryption, and deletion actions for each resource type
Get a detailed view of the resource name and the impacted snapshot for which the alerts are generated
To access the report
You need to be a Druva Cloud Administrator.
Go to Druva Cloud Platform Console Global Navigation > Reports > Cyber Resilience > Unusual Data Activity Alerts Report.
Using the report
๐ Note:
By default, the period selected for the report is 30 days from the current date. For example, if today is March 31, 2024, the report displays data from March 1 to March 30, 2024.
The data in the reports is synced periodically. The report shows the Data last updated details.
The Unusual Data Activity Alerts report comprises the following sections:
Filters to get a report with more granular data
Filter | Description |
Resource Type | Select the resource type whose UDA alerts you want to view. |
Alert Type | Select the type of alert you want to view - Creation, Modification, Deletion, and Encryption. |
Summary view
Filter | Description |
Total Alerts | Total number of UDA alerts (active and resolved) for the selected filter. |
Active Alerts | Total number of active alerts for the selected filter. |
Resolved Alerts | Total number of alerts resolved (Ignored or Downloaded logs) for the selected filter. |
Alert Status Distribution | View the number of alerts based on the status of the selected filter. |
Alert details
๐ Note:
The details are displayed based on the selection of resource type in the filter.
Field | Description |
Resource Name | Name of the resource for which the alert is generated. |
User Name (For Endpoints and OneDrive only) | Name of the user. |
Snapshot Affected | Details of the impacted snapshot. |
Alert Type | Type of alert - Creation, Modification, Deletion, and Encryption. |
Related actions
To leverage the report, you can perform the following actions:
Action | Description |
Subscribe to report | You can schedule and subscribe to receive reports over email as a CSV file or a PDF. A subscription can be created for other members of the organization, too. ๐ Note: By default, the data fetched in the report's timestamp follows the logged-in adminโs time zone. |
Email the report | You can email the report in CSV or PDF format to other recipients on demand. |
Download widget data | You can download the widget data in CSV, CSV Summary, Excel, or PDF format. |
Download Unusual Data Activity Alerts details | You can download the alert details data in CSV, Excel, or PDF format. |
Add Filters to get a report with more granular data | Global filter: You can create a global filter, page filter, or panel filter to fetch details based on your requirements. |