Skip to main content

Endpoints page in OneView

Updated: 

The Endpoints page of the OneView console improves efficiency and reduces time to perform actions across multiple sites. To navigate to the Endpoints page, on the left navigation pane, click Manage > Endpoints.

Endpoints

For different actions you can perform in the Endpoints page, see the following:

To add endpoints, click the Add Endpoints button to take you to OneView's Downloads page. 

Connection status

View the endpoint's real-time WebSocket connection status using the Connection column on the Endpoints page. This does not indicate whether an endpoint is online or offline. If this column is missing from the page, see Add or Remove columns.

Note: Endpoints showing a connection status of Offline or Not available check in with a 5-minute polling interval for tasks and changes. Filter endpoints by Today in the Last Sync column to verify active communication. The Last sync date should continue to update, even when the green dot doesn't display or the Last connected date isn't updating. 

The indicator shows the following status colors and options: 

Icon Status

2022-05-11_14-42-05.png

Online: The green status indicator displays when the WebSocket connection on the endpoint is active. Real-time communication occurs between the endpoint and OneView to receive and process tasks or changes. This also affects the Last Connected date in the console, which is the last time the endpoint connected to the ThreatDown servers. 

2022-05-11_14-33-00.png

Offline: The gray status indicator displays during any of the following:

  • Inactive WebSocket connection on the endpoint
  • Endpoint using a proxy
  • Network unstable on the endpoint 

 

Not available: The connection status is unavailable for endpoints running the following operating systems:

  • Android
  • ChromeOS
  • iOS

 

Endpoint details

In the table, click an endpoint name to open a slide out with the endpoints details. All dates and times shown are relative to your browser settings. 

  • Overview: Displays the endpoint name, version information, host and agent information, Operating System, Network Interfaces, Memory information, and Storage device information.
  • Active Detections: Displays detections found that need remediation. These detections are found either by the Scan + Report action or by a scan with the automatic quarantine option disabled.
  • Quarantined Detections: Displays files quarantined by the Scan + Quarantine action or scheduled scans with the automatic quarantine option enabled. Quarantined files are isolated from the endpoint operating system to prevent potential infection. Displays quarantined files up to 30 days old.
  • Detection Log: Displays all detections. Selectable by type and actions taken.
  • Suspicious Activity: Displays Suspicious Activity events found. Requires an Endpoint Detection and Response subscription.
  • Vulnerabilities:Displays software vulnerabilities found on the endpoint.
  • Application Block: Displays Application Block activity on the endpoint.
  • Software: Displays the software installed on the endpoint.
  • Events: Displays logged activities on the endpoint and their severity.
  • Tasks: Displays the status of requested or completed operations on the endpoint.
  • Scan History: Displays scan records up to 30 days old, their Total Detections, Type, and Origin.
  • Updates/Patches: Displays the installed and available software patches for the endpoint.
  • Startup Programs: Displays startup programs on the endpoints.
  • Audit Log: Displays subscription and protection level changes on endpoints due to add-ons or policy changes. 

Refresh assets using Actions > Scans > Scan Inventory & Vulnerability or schedule an Asset Inventory Scan to force a refresh at a specified time. Scheduled asset refreshes can be helpful if you need frequent Endpoint Properties updates.

When you refresh assets on your endpoint, the following tabs/sections update:

  • Overview
    • Memory Objects: Physical and virtual memory of the endpoints.
    • Storage Devices: Connected storage, USB storage, and other devices.
  • Software: Software installed on the endpoint.
  • Updates: Software updates that occurred on the endpoint.
  • Startup Programs: Registry entries for installed startup programs on the endpoint.

Export data

You can export endpoints to a spreadsheet to review the details of your selected endpoints. The endpoints table allows you to select all or a subset of columns and rows to copy the selected content. To export, follow the steps below:

  1. In the left-side navigation pane, click Manage > Endpoints.
  2. Check the boxes of the endpoints you want further details on.
  3. Right-click on the highlighted area.
  4. Click Export > CSV Export or Excel Export (.xlsx).

If the data size is too large to download, an email will be sent instead with a link to download the export.

Still have questions?

Support is available via chat, phone or by creating a ticket. You can also use our virtual assistant for guided assistance.

Learn more