Skip navigation
All Places > Products > RSA NetWitness Platform > RSA NetWitness Platform Online Documentation > Documents
Log in to create and rate content, and to follow, bookmark, and share content with other members.

Endpoint Config: Configure Retention Policy for Memory Dumps and MFT

Document created by RSA Information Design and Development Employee on Jan 31, 2020Last modified by RSA Information Design and Development Employee on Jul 16, 2020
Version 5Show Document
  • View in full screen mode
 

An administrator can configure the retention policy to delete the downloaded system dump, process dump, and Master File Table (MFT) from the Endpoint server based on the number of days. By default, this option is enabled.

To configure the retention policy:

  1. Go to ADMIN > Services.

  2. In the Services view, select Endpoint Server.

  3. Click and select > View > Config.

  4. Click the Data Retention Scheduler tab.

    Data Retention Scheduler

  5. In the Memory Dumps and MFT Retention Policy panel, by default, the Threshold is set to 90 days and Run to every day. This means only 90 days of data is retained and the older data is deleted from the Endpoint server.
  6. Click Apply.

Previous Topic:Manage Inactive Agents
You are here
Table of Contents > Configure Retention Policy for Memory Dumps and MFT

Attachments

    Outcomes