Cyber Health Dashboard - Metasys - LIT-12011953 - Server - Metasys UI - 7.0.50

Metasys UI Help

Brand
Metasys
Product name
Metasys UI
Document type
User Guide
Document number
LIT-12011953
Version
7.0.50
Revision date
2024-03-19
Product status
Active
Language
English

What is the Cyber Health dashboard?

The Cyber Health dashboard provides a Metasys administrator with a centralized view of potential security-related issues or system issues which are detectable by an OAS, NAE85/LCS85 and ADS/ADX, but which may not surface as part of general system alarms. The administrator can also see out-of-date software at one glance. The information is grouped into critical issues, potential risks, and informational items.

How do I get to the Cyber Health dashboard?

  1. Open the User menu in the upper-right corner of your screen.
  2. Tap or click Network Security.
  3. Tap or click Cyber Health Dashboard.

Who can access the Cyber Health dashboard?

Only Metasys local and Active Directory users with Administrator role can currently access the Cyber Health dashboard.

What is the layout of the Cyber Health dashboard?

The Cyber Health dashboard consists of three widgets, including the Security Analysis widget, the System Status widget, and the User Activity widget.

The following figure and table outline the default dashboard layout of the Cyber Health dashboard.

Figure 1. Cyber Health Dashboard
Table 1. Cyber Health dashboard callouts
Number Name Description
1 Security Analysis widget Provides you with a detailed breakdown of security issues and risks. The widget consists of a Summary tab, Critical Issues tab, Potential Risks tab, and Informational tab.
2 Summary tab Shows a summary of critical issues and potential risks. Tap or click on the hyperlinked titles or on See More to see more information in the relevant tab.
3 Critical Issues tab Shows critical issues related to the user accounts or server, respectively. Tap or click FILTER to select account-related and/or server-related issues. Tap or click View Details to view and edit user details for account-related issues, and to see engine details for server-related issues. Tap or click Policy Recommendation to read the policy recommendation pertaining to an issue.
4 Potential Risks tab Shows potential risks related to the user accounts or server, respectively. Tap or click FILTER to select account-related and/or server-related risks. Tap or click View Details to view and edit user details for account-related risks, and to see engine details for server-related risks. Tap or click Policy Recommendation to read the policy recommendation pertaining to a risk.
5 Informational tab Shows informational items that are neither critical issues nor potential risks. For example, you can see how many total user accounts exist, or how many network engines have Metasys software at Release 8.1 or later. Tap or click FILTER to select account-related and/or server-related items. Tap or click View Details to view and edit user details for account-related items, and to see engine details for server-related items. Tap or click Policy Recommendation to read the policy recommendation pertaining to an item.
6 System Status widget Shows an Account Overview, Engine Overview, and Engine Details. See Table 2 for more information about account information.
7 Summary tab Shows an account overview in the form of a bar chart and an engine overview in the form of a doughnut chart.
8 Engine Details tab The Engine Details tab lists the name, IP address, certificate expiration, firmware version, and status of the engines. Tap or click FILTER to refine the engine details listed.
Note: If the IP address or the firmware version do not display, you need to re-synchronize the engines. See Why, when, and how do I issue a Sync Engine command? for more information about re-synchronizing the engines.
9 Advanced Security information

Shows the status of the Advanced Security attribute. This attribute provides an improved layer of security between Metasys Site Directors and devices. With this attribute set to On, backwards compatible methods of communication between the Site Director and its network engines are disabled, which means a Site Director at Metasys Release 10.0 discards all communication attempts from network engines prior to Release 10.0. The Advanced Security flag being enabled allows for more secure communication.

Note: You can change the Advanced Security attribute on the Site object on the Detail widget in the Building Network Dashboard in Metasys UI and in the Site Management Portal (SMP). Refresh Metasys UI after you perform the update in SMP. For more information about setting the Advanced Security attribute refer to Metasys Site Management Portal Help (LIT-1201793).
10 Export icon Exports a Cyber Health Report in a .pdf file format.
Note: The export functionality is not supported on tablets and smartphones.
11 User Activity widget
This widget shows the following information:
  • All successful user login occurrences during a specified period of time.
  • All unsuccessful user login occurrences during a specified period of time
  • All account lock-out occurrences during a specified period of time
Note: Tap or click the calendar icon to select a date range. Date range options include Last Day, Last 7 Days, Last 30 Days, and Last 12 Months.

Why, when, and how do I issue a Sync Engine command?

The Sync Engine command synchronizes the latest attributes and information available on a network engine with the online archive available on the Site Director. The online archive is used by Metasys UI but is not used by the SMP UI. When you make changes to an engine while you are logged in to the site director using Metasys UI, the online archive is always updated. However, certain changes through SMP UI may require that you send a Sync Engine command to one or more engines in order to ensure the online archive has the latest data. This includes the following:

  • A child engine was modified directly (not from the Site Director)
  • An extension was created online with SMP
  • A point discovery was executed on a live site in SMP
  • Bulk modify was used in SMP to change attributes of multiple objects on a single engine or on multiple engines
To issue a Sync Engine command, follow these steps:
  1. Navigate to the Building Network tree and select the engine object.
  2. Tap or click on the status or value in the Detail widget. The Command dialog appears.
  3. From the Command drop-down menu, select Sync Engine.
  4. Tap or click Save.

What user account information can be displayed on the Cyber Health dashboard?

The user account information that displays on the Cyber Health dashboard relates to users on the site director only. It does not provide information for users on non-site director devices. The following table outlines the data that can be displayed on the dashboard in more detail. Not all of these options appear on every Cyber Health dashboard. The data that displays depends on the available user account information.
Table 2. User account information on the Cyber Health dashboard
User account information Description
Total user accounts Shows the total count of server user accounts.
Note: User accounts created on engines are not included. Active Directory user accounts are not included if Active Directory is disabled.
Dormant user accounts Shows the total count of server user accounts that are dormant.
Active user accounts Shows the total number of accounts that have the potential to access the server. The count of active user accounts is the total server user accounts less locked-out user accounts, less disabled user accounts, less temporary expired user accounts, and less Active Directory user accounts if Active Directory is disabled.
Locked user accounts Shows the total count of server user accounts that are locked.
Note: User accounts can get locked due to dormancy or too many unsuccessful login attempts.
Temporary users Shows the total count of server user accounts that are temporary.
Disabled users Shows the total count of server user accounts that are disabled. This also includes single access user accounts that are disabled.
Users with Administrator role Shows the total count of server user accounts that have an Administrator role.
Policy-related information Shows the total count of server accounts with policies that are less stringent than recommended. The policy information relates to passwords, lockout settings, dormant accounts, and inactive sessions.
Important: The server user accounts referenced in this table include Metasys local accounts and Active Directory accounts. However, some of the policy-related information is based only on Metasys local accounts.

Can I export data shown on the Cyber Health dashboard?

You can export information that appears on the Cyber Health dashboard on a computer. To export the information click on the Export icon in the upper right of the Cyber Health Dashboard. A timestamped Cyber Health Report in a .pdf file format downloads to your default download location. The report contains all the details from the SECURITY ANALYSIS widget, the SYSTEM STATUS widget, and the USER ACTIVITY widget.
Note: The export functionality is not supported on tablets and smartphones.

Is the Cyber Health dashboard supported on all devices?

Yes, the Cyber Health dashboard is supported on desktop, tablets, and smartphones.