asfenpetro.blogg.se - Att dashboard

Global visibility lists how many locations are in your environment, and how many of them have sensors deployed. Here you can see an overview of global visibility, assets visibility, and network visibility at the top of the page. To take a closer look at the deployment status of all your networks and assets, go to Dashboards > Deployment Status. These IP addresses are provided by Indicators of Compromise which are included as part of OTX pulses. The map visualizes IP addresses that belong to hosts that are performing attacks or have malicious behavior. Open Threat Exchange - Allows you to visualize threats graphically in a map, as well as list OTX Pulse information.In addition, you can define locations and then add USM Appliance Sensors to monitor and view monitoring in place (such as IDS, vulnerability scan, NetFlow monitoring) for different network devices and servers at a specific location. Deployment Status - Provides a global view of monitoring in place for assets, networks, and locations.In addition to the Overview display, the main Dashboards menu selection also provides several other submenu selections: The Environment Snapshot shows open tickets, unresolved alarms, system health, latest event activity, and the number of monitored devices. You can expand the Notification Tray to view the Environment Snapshot by clicking on the small arrow on the left side of the summary Environment Snapshot display. The default state shows the current alarms and the Events Per Second (EPS). The Environment Snapshot is displayed on the far right side of the USM Appliance web UI.

For more information about the dashboard, see USM Appliance Dashboard Configuration. Clicking on the icon provides a more detailed explanation about the information the widget displays. For most dashboard displays, you can mouse over or click through portions of the display to view the data on which the dashboard display was rendered. Also displays details of available scan reports.Įach widget on the dashboard provides its own representation of information along with a legend or description of data points.

Vulnerabilities - Provides metrics on vulnerability characteristics such as severity and most affected hosts.

Taxonomy - Provides metrics on events based on different USM Appliance taxonomy event classifications, for example, virus detection, successful and failed logins, malware, and exploit event types.

Security - Provides metrics on different measures of security in the environment, for example, promiscuous host, active hosts, most frequent alarms, and security event reporting trends.

Tickets - Provides metrics on tickets created within USM Appliance’s own ticketing system.

Additional options from the Overview page provide dashboard displays for Tickets, Security, Taxonomy, and Vulnerabilities. The default Overview > Executive display shows various “widgets” (charts, tables, and graphs) that summarize various aspects of network security and other status, activities, and events occurring in your network. See OTX Pulses and Indicators of Compromise and Displaying Alarms and Events Based on OTX Pulse and IP Reputation for details.

Note: The OTX Activity widget will only contain data when the suspicious IP is reported as an IOC for a pulse.