How long are my events stored?

Applies to Deep Security as a Service only

The event history setting for Deep Security is currently 13 weeks. On May 15, 2017, the event retention period will be reduced to 32 days. Customers requiring a long duration event retention period should consider exporting events to an external SIEM. For more information on how to do this, see Forward events to an external Syslog or SIEM server.

Event history is retained for the following events:

  • Anti-malware events
  • Web reputation events
  • Firewall events
  • Intrusion prevention events
  • Integrity monitoring events
  • Log inspection events
  • System events

You can view your event history by going to Events & Reports in the Deep Security Manager.