This article discusses how to use the Endpoint Protection (EPP) Dashboard to get a quick overview of threats detected by EPP in your network.
The EPP Dashboard lets you view the malicious and suspicious threat activity in your network detected by the EPP engines. The page contains a number of widgets that provide visibility for threat activity and the impacted users. The page also lets you add items to the threats filter to drill-down and focus on the relevant threat data and events in your account. For more information about Cato's EPP solution, see Getting Started with Cato's Endpoint Protection (EPP).
The Endpoint Protection Dashboard page shows the total threat activity over the time range.
To show the Endpoint Protection Dashboard:
-
From the navigation menu, click Monitoring > Endpoint Protection Dashboard.
For more information about using the dashboard, see Configuring Filters to Analyze Dashboard Data and Setting the Time Range Filter. The maximum date range for the dashboard is 90 days.
|
Name |
Description |
|---|---|
|
Total Endpoints |
The number of endpoints protected by Cato's EPP solution. |
|
Assigned Licenses |
The percentage of of EPP licenses that have been used. |
|
Total Threats Found |
The number of threats found on all endpoints. |
|
Total Files Quarantined |
The number of files quarantined on all endpoints. |
|
Time Range |
The time range applied to the page. |
|
Top Threats |
The most common threats detected on your endpoints. |
|
Threats per Day |
The number of threats detected per day. |
|
Threats by Detection Engine |
The number of threats detected by each EPP detection engine. |
|
Top Threatened Users |
The users with the highest number of threats detected on their endpoint. |
|
Top Malicious Files |
The most common malicious files detected on your endpoints. |
|
Top Malicious Hashes |
The most common file hashes detected on your endpoints. |
|
Version Distribution per Endpoint |
The number of each EPP agent version installed on your endpoints. |
To further analyze threats identified by EPP, you can view the events for items within a widget. For example, you can view the events of a threatened user.
0 comments
Please sign in to leave a comment.