My firm is just starting to investigate using the Device Classification rules for SWG. We are also evaluating NPA where these will be extremely useful. Has anyone come across a better way to alert on a failure reason? If we create a device classification rule looking for disk encryption, our endpoint security tool and a local file.....and one of those checks fails....the end user has no way to know why it failed and my team can only look in the nsdebug log locally to see the entry similar to below. 2021/08/24 11:53:12.583723 stAuxSvc p359 t152b 4 deviceId.cpp:357 deviceId process check: status 0, name [insert missing process name] Anyone have ideas on what else could be done to proactively monitor for failures and more importantly the reasons?
... View more