Overview
This article explains the procedure for checking the results of trainings conducted in the Tadrill Administration. It also describes the contents of each item in Target & Activity, Summary, and CSV.
Notes
- The content of this article is based on the product specifications as of July 2026 and is subject to change without notice.
- Admin privileges for Tadrill are required to actually view the screens or change settings.
- For instructions on how to access the Administration, please refer to the following article.
[Tadrill] How to log in to the Administration - If you are subscribed to the HENNGE One Basic plan, you cannot view the [Summary] screen under [Training].
Procedure
-
Access [Training] from the left menu in the Tadrill Administration.
-
From the list screen, select the training for which you want to check the results.
-
The training details screen will be displayed.
Select the tab for the item you want to check.
Checking Target & Activity
You can check the training history from the [Target & Activity] tab.
How to check activities for each user
-
From the [User List] tab, you can check the email sent at, whether the email was opened, risk actions, and the number of reports for each user.
* You can search for users using Search Filters.
* The Export function downloads all users regardless of the Search Filters.In the [Email sent at] column, you can also check the delivery status. However, for SMTP delivery, it may take time for errors to be returned. Immediately after delivery, the status will be delivery completed. Please check again after some time.
-
Clicking a user allows you to check the action log, such as the date and time the user accessed the URL or reported.
* For details on each item in the training summary and action log displayed, refer to "Fields (Target & Activity)".
How to check the Action List
-
From the [Action List] tab, you can check information about users who performed each action.
For actions suspected to be performed by bots, Tadrill will automatically assign the [Bot-like] status.
* The system's automatic judgment is provided to assist with manual handling by admins.
Patterns of mechanical actions are adjusted as needed to improve detection accuracy.
However, due to the large number of irregular patterns, it is difficult to automatically detect all mechanical actions.
Please check and respond manually in addition to the system's automatic judgment. -
If an action is suspected to be performed by a bot, you can set the [Mark as bot action] status for the relevant action.
Actions marked as bot actions will not be counted as risk actions in the summary tables or graphs.
For detailed steps, refer to the following article.
[Tadrill] How to change the status of training results
Summary
You can check overall information such as the number of email opens, reports, and risk actions for the conducted training on the Dashboard.
-
Open the [Summary] tab and check the contents of the displayed Dashboard.
For details on each item displayed, refer to "Fields (Summary)".
Fields (Target & Activity)
| Name | Description |
| Email opened |
The number of times the training email was opened * If [Track Email Open Events] was disabled when creating the training, the value will be displayed as "-" (dash). |
| Risk actions |
The number of times risk actions were performed from the training email
For more details, refer to the following page. |
| Reports | The number of times the training email was reported to the admin using Tadrill Alert (suspicious email reporting feature) |
| Email sent at |
The sent date and delivery status of the training email * If an error occurs, hover your cursor over the error icon to view the error message. Please refer to the Help Center below for more details. |
| Training emails | The name of the training set |
| Action |
Details of the action performed
|
| IP Address | The IP address from which the action was performed |
| User agent | Information about the device or OS used to perform the action |
| Datetime | The date and time the action was performed |
Fields (Summary)
| Name | Description | Notes |
| Action summary | The total number of email opens, reports, and risk actions for the conducted training | - |
| Risk level | The risk level distribution based on user actions for the conducted training | - |
| Action details | User actions by attribute for the conducted training |
|
Fields (User List CSV)
| Name on screen | CSV field name | Description |
| User | Email address | |
| - | first_name | Given name |
| - | last_name | Family name |
| User attributes | department | Department |
| position | Title | |
| - | group_user |
Whether to treat this user as a group
|
| Training emails | template_name | Name of the training email set |
| Email sent at | email_sent_at | Sent date of the training email |
| - | latest_email_open | Datetime of the latest email open |
| - | latest_clicked_link | Datetime of the latest access to a phishing link in the training email |
| - | latest_downloaded_file | Datetime of the latest access to a download link in the training email |
| - | latest_activated_file | Datetime of the latest opening of an attachment in the training email |
| - | latest_report | Datetime of the latest report to the admin using Tadrill Alert (suspicious email reporting feature) for the training email |
| Email opened | email_open_count | The number of times the training email was opened |
| Risk actions | click_count |
The number of times risk actions were performed from the training email
|
| Reports | report_count | The number of times the training email was reported to the admin using Tadrill Alert (suspicious email reporting feature) |
| - | user_tags | Tags assigned to the user |
Fields (Action List CSV)
| Name on screen | CSV field name | Description |
| User | Email address | |
| - | first_name | Given name |
| - | last_name | Family name |
| Action | action |
Details of the action performed
|
| IP Address | ip_address | The IP address from which the action was performed |
| User agent | user_agent | Information about the device or OS used to perform the action |
| Datetime | time_of_action | The date and time the action was performed |
| - | bot_like |
Status automatically assigned by Tadrill
|
| - | admin_judgement |
Status manually assigned by the admin
|