Enterprise Recon 2.10.0

Reports

You can generate reports that provide a summary of scan results and the action taken to secure these match locations.

You can generate the following reports:

Reading the Reports lists and describes the information that can be found in the various reports.

The reports are available as the following file formats:

  • PDF
    • A4 size
    • Letter size
  • HTML
  • XML
  • Plain text
  • CSV
Scanned Bytes

The "Scanned Bytes" value displayed in reports may not match the physical size of data scanned on the Target. Files and locations on the Target are processed to extract meaningful data. This data is then scanned for sensitive information. Since only extracted data is scanned, the amount of "Scanned Bytes" may be different from the physical size of files and locations on the Target.

  • For compressed files (e.g. ZIP archives) or locations, the data is decompressed and extracted before it is scanned for sensitive data, resulting in a higher number of "Scanned Bytes" for the file.
  • For XML files, XML tags are stripped from the file before the contents are scanned for sensitive data, resulting in a lower number of "Scanned Bytes" for the XML file.
  • For image files, when the OCR feature is enabled, only relevant data is extracted from the file and scanned for sensitive data, resulting in a lower number of "Scanned Bytes" for the image file.

Global Summary Report

The Global Summary Report displays a summary of scan results for all Targets.

To generate a Global Summary Report:

  1. Log in to the ER2 Web Console.

  2. Go to Dashboard.
  3. On the top right of the Dashboard page, click Summary Report.
  4. In the Save Summary Report window, select the file format of the report.

  5. Click Save.

Reading the Global Summary Report

The table below describes the information found in a Global Summary Report:

Detail Description
Report header Header that describes the scope of the report.
Report overview Summary of matches found, and the number of Global Filters and Data Types used.
Summary Summary of number of Targets scanned, organized by:
  • Total Targets
  • Compliant Targets
  • Non Compliant Targets
  • Unscanned Targets
Match breakdown Breakdown of matches by:
Global Filter Rule Global Filters used in the scan.

See Reading the Reports for a summary of the information that can be found across all report types.

Target Group Report

To generate a Target Group Report:

  1. Log in to the ER2 Web Console.

  2. Go to the Targets page.
  3. Hover over the Target Group and click on the gear Enterprise Recon 2.1 options gear icon. icon.
  4. (Optional) Select View Current Report from the drop-down menu. In the Report page, click Save This Report to save the current Target Group report.
  5. Select Download Report from the drop-down menu.
  6. Select a Format for the Target Group Report.
  7. Click Save.

To download other reports for the Target Group:

  1. Go to the Targets page.
  2. On the top right of the Targets page, click Target Group Report.
  3. In the Save Target Group Report dialog box, select a Target Group.
  4. Select from the following report generation options:

    Field Description
    Report Type
    1. Group Target Report
      Summary of scan results for all Targets in a Target group.
    2. Current Consolidated Report
      Creates a zip file that contains individual reports for each Target in the Target group. The report displays the Target's scan history up to the latest scan.
    3. Latest Scan Reports
      Creates a zip file that contains individual reports for each Target in the Target group.
      The report displays details on the Target's latest scan.
    Format Select the file format for the report.
    Report format options: PDF (A4), PDF (US Letter), HTML, XML, Text, CSV.
    Content

    Select the content to be included in the report.

    1. Match Samples
      Select this option to include contextual data for match samples in the generated report.
      Match samples may not be available if the Master Server does not have complete match data information.
    2. Metadata
      Select this option to include metadata in the generated report.
      Metadata fields include Access PRO details, "File owner", "File modification", "Key", "Schema", "From", "Date", etc.
    3. Detail each stream
      Select this option to include details on the full object path or data stream of the matched data.
      For a match that is detected in the file MyFile.txt contained within the archive D:\MyFolder.zip:
      • If Detail each stream is selected, the "Location" information in the CSV report is displayed as File path D:\MyFolder.zip->MyFile.txt
      • If Detail each stream is not selected, the "Location" information in the CSV report is displayed as File path D:\MyFolder.zip

  5. Click Save.

Reading the Target Group Report

The table below describes the information found in a Target Group Report:

Detail Description
Report header Header that describes the scope of the report.
Report overview Summary of matches found, and the number of Global Filters and Data Types used.
Summary Summary of number of Targets scanned, organized by:
  • Total Targets
  • Compliant Targets
  • Non Compliant Targets
  • Unscanned Targets
Match breakdown Breakdown of matches by:
Metadata Metadata information for the match location.
Global Filter Rule Global Filters used in the scan.
Remediation performed Summary of remedial actions performed. The report shows the number of matches remediated for each type of remedial action.
Operation log Details on the location of remediated matches, status of remedial action, and the number of matches remediated.

See Reading the Reports for a summary of the information that can be found across all report types.

Target Report

To generate a Target Report:

  1. Log in to the ER2 Web Console.

  2. Go to the Targets or Investigate page.
  3. (Targets page only) Expand the group your Target resides in.
  4. Hover over the Target and click on the gear Enterprise Recon 2.1 options gear icon. icon.
  5. (Optional) Select View Current Report from the drop-down menu. In the Report page:
    1. Click Save This Report to save the current consolidated report; or
    2. Click View Other Reports to save other consolidated or isolated reports.
  6. Select Download Report from the drop-down menu.
  7. In the Save Target Report dialog box, select from the following report generation options:

    Field Description
    Report Type
    1. Consolidated Report
      A summary of the entire scan history of a given Target and a brief status summary of the last ten scans.

      • Current report: A scan history of a given Target up to the latest scan.
      • Historical report: A scan history of a given Target up to the selected report date.

    2. Isolated Report
      Saves a report for a specific scan.
    Scan Date

    If Consolidated Report is selected:

    • Current report - [Latest scan date and time]
    • Historical report - [Previous scan date and time]

    If Isolated Report is selected:

    • Scan Report - [Scan date and time]

    Format Select the file format for the report.
    Report format options: PDF (A4), PDF (US Letter), HTML, XML, Text, CSV.
    Content

    Select the content to be included in the report.

    1. Inaccessible Locations
      Select this option to generate a report of inaccessible locations for a Target.
    2. Match Samples
      Select this option to include contextual data for match samples in the generated report.
      Match samples may not be available if the Master Server does not have complete match data information.
    3. Metadata
      Select this option to include metadata in the generated report.
      Metadata fields include Access PRO details, "File owner", "File modification", "Key", "Schema", "From", "Date", etc.
    4. Detail each stream
      Select this option to include details on the full object path or data stream of the matched data.
      For a match that is detected in the file MyFile.txt contained within the archive D:\MyFolder.zip:
      • If Detail each stream is selected, the "Location" information in the CSV report is displayed as File path D:\MyFolder.zip->MyFile.txt
      • If Detail each stream is not selected, the "Location" information in the CSV report is displayed as File path D:\MyFolder.zip

  8. Click Save.

Reading the Target Report

The table below describes the information found in a Target Report:

Detail Description
Report header Header that describes the scope of the report.
Target description Target Group, platform type and the scan date.
Report overview Summary of matches found, and the number of Global Filters and Data Types used.
Match breakdown Breakdown of matches by:
Brief scan history Shows Last 'n' Searches for a Target where 'n' is the number of searches done for the target.
Prohibited data locations Locations that need immediate remedial action.
Match samples Samples of match data.
Match samples may not be available if the Master Server does not have complete match data information.
Metadata Metadata information for the match location.
Data Classification with MIP PRO MIP sensitivity label and classification type for the match location.
Access Control PRO Access control actions taken on the match location.
Search Filters Global Filters and/or Data Type Profile Filter Rules used in the scan.
Remediation performed Summary of remedial actions performed. The report shows the number of matches remediated for each type of remedial action.
Operation log Details on the location of remediated matches, status of remedial action, and the number of matches remediated.

See Reading the Reports for a summary of the information that can be found across all report types.

Match Report PII PRO

A Match Report contains the match information for the Targets or match locations that are selected in the results grid of the Investigate page. Match Reports are only available in CSV format.

Generate Match Reports

To generate a Match Report:

  1. Go to the Investigate page.
  2. (Optional) Select one or more filters in the Filters Locations by panel and click on Apply Filter to show specific Targets and match locations in the results grid.

  3. In the results grid, select the match locations to be included in the Match Report.
    Selecting Targets and match locations for the Match Report.
  4. Click on Export. The Generating Report dialog box details the filters that have been applied and the number of Targets or match locations that will be included in the Match Report.
    Generating Report dialog box displaying the Targets and match locations included in the Match Report.
  5. The progress bar reaches 100 % when the match locations have been fully exported. Click Save to download the Match Report.

Reading the Match Report

The table below describes the information found in the Match Report:

Detail Description
Target Group Target Group name.
Target Target name.
Location Target location path.
[Metadata] Metadata information for the Target location.
[Access Permissions] PRO Groups, users, and user classes with Execute, Full, Modify, Read or Write permissions for the Target location.
[Match Count per Data Type] Number of matches per data type for the Target location.
Access Count PRO The number of unique users that have any level of access permissions to the match location. See View Access Status for more information.
Access Control PRO Status of the most recent access control action performed on the Target location.
Remediation Status of the most recent remediation action performed on the Target location.
Sign-Off Text entered into the Sign-off field when the most recent operation (remediation, access control PRO or classification) was taken.
Reason Text entered into the Reason field when the most recent operation (remediation, access control PRO or classification) was taken.
User User that performed the most recent operation (remediation, access control PRO or classification) on the Target location.
MIP Label PRO Displays the latest MIP sensitivity label applied to the location.
Classification Type PRO If the location has any MIP sensitivity label applied, this column indicates if the label was
  • manually applied in ER2 (Classified),
  • automatically applied based on classification policies in ER2 (Policy-based), or
  • applied outside of ER2 (Discovered).
[Risk Profile] PRO All risk profiles that are mapped to the Target location.
Delegation PRO Displays Delegated if there is at least one active delegated remediation task associated with the match location.

See Reading the Reports to compare information provided in Match Report with other reports.

Reading the Reports

The following table is a summary of all details that can be found in each report type:

Detail Displays Report Availability
Report header Header that describes the scope of the report.
  • Global Summary Report
  • Target Group Report
  • Target Report
Target description Target Group, platform type and the scan date.


  • Target Report
  • Match Report
Report overview Summary of matches found, and the number of Global Filters and Data Types used.
  • Global Summary Report
  • Target Group Report
  • Target Report
Summary Summary of number of Targets scanned, organized by:
  • Total Targets
  • Compliant Targets
  • Non Compliant Targets
  • Unscanned Targets
  • Global Summary Report
  • Target Group Report
Match breakdown Breakdown of matches by:
  • Global Summary Report
  • Target Group Report
  • Target Report
  • Match Report
Brief scan history Shows Last 'n' Searches for a Target where 'n' is the number of searches done for the target.
  • Target Report
Prohibited data locations Locations that need immediate remedial action.
  • Target Report
Match samples Samples of match data.
Match samples may not be available if the Master Server does not have complete match data information.
  • Target Report
  • Match Report
Metadata Metadata information for the match location.
  • Target Group Report
  • Target Report
  • Match Report
Global Filter Rule Global Filters used in the scan.
  • Global Summary Report
  • Target Group Report
Search Filters Global Filters and/or Data Type Profile Filter Rules used in the scan.
  • Target Report
Remediation performed Summary of remedial actions performed. The report shows the number of matches remediated for each type of remedial action.


  • Target Group Report
  • Target Report
  • Match Report
Access Control actions PRO Summary of access control actions taken on the Target location.
  • Target Report
  • Match Report
Data Classification with MIP actions PRO Summary of MIP classification information and data classification actions taken on the Target location.
  • Target Report
  • Match Report
Risk Scoring and Labeling PRO Risk Score and Risk Label information for the Target location.
  • Match Report
Operation log Details on the location of remediated matches, status of remedial action, and the number of matches remediated.
  • Target Group Report
  • Target Report
Delegated Remediation PRO Delegated Remediation status for the Target location.
  • Match Report

PII This feature is only available in Enterprise Recon PII Edition. To find out more about upgrading your ER2 license, please contact Ground Labs Licensing. See Subscription License for more information.


PRO This data is only available in Enterprise Recon PRO Edition. To find out more about upgrading your ER2 license, please contact Ground Labs Licensing. See Subscription License for more information.