McAfee HISCDE-AB-IA Product Guide - Page 12
Managing Your Protection, Information management, Host IPS dashboards
View all McAfee HISCDE-AB-IA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 12 highlights
Managing Your Protection Management of a Host Intrusion Prevention deployment includes monitoring, analyzing, and reacting to activities; changing and updating policies; and performing system tasks. Contents Information management Policy management System management Information management After you have installed Host Intrusion Prevention, you can track and report on security issues that arise in your environment. Use the dashboards for a daily view of the security situation or to run queries for detailed information on particular issues. Host IPS dashboards Dashboards are a collection of monitors that are an essential tool for managing your environment. Monitors can be anything from a chart-based query to a small web-application, like the MyAvert Threat Service. You can create and edit multiple dashboards if you have the permissions. Use any chart-based query as a dashboard that refreshes at a specified frequency, so you can put your most useful queries on a live dashboard. Host Intrusion Prevention provides two default dashboards with these monitors: Table 1: Host IPS dashboards and monitors Dashboard Monitors Host IPS • Firewall Status • Host IPS Status • Service Status • Count of IPS Client Rules • Content Versions • Top 10 NIPS Events by Source IP Host IPS Triggered Signatures • Desktop High Triggered Signatures • Desktop Medium Triggered Signatures • Desktop Low Triggered Signatures • Server High Triggered Signatures • Server Medium Triggered Signatures • Server Low Triggered Signatures 12 McAfee Host Intrusion Prevention 8.0 Product Guide for ePolicy Orchestrator 4.5