Manualshelf

Reference Guide

ManualsBrandsDell ManualsConverged InfrastructureEndpoint Security Suite Pro
241242243244245246247248249250
Security Management Server Virtual - AdminHelp v9.8
233
Columns display the File name, Interpreter (PowerShell or ActiveScript), Last found, Drive type (such as
internal hard drive), SHA256, Number of devices on which the script is found, and Number of occurrences
that were blocked or triggered alerts.
To filter column data, click the filter icon on a column header and select values to include or exclude.
Manage Enterprise Advanced Threats - Agents
After an Advanced Threat Prevention client is installed on an endpoint computer, it is recognized by the
Security Management Server as an agent.
Agents Table Data, Explained
Name - The name of the agent on the endpoint computer.
State - State of the agent, online or offline. A computer will be in the offline state after three
failed attempts in a 15-minute period to contact the Cylance server.
Offline Date - If applicable, the date on which the agent went offline.
Files Analyzed - Number of files analyzed on the endpoint computer.
Unsafe - Number of files deemed Unsafe on the device. An unsafe file has characteristics that
greatly resemble malware.
Quarantined - Number of files Quarantined on the device.
Waived - Number of Waived files on the device.
Abnormal - Number of Quarantined files on the device.
Exploit Attempts - Number of exploit attempts on the device.
Commands
To export details about an agent or remove an agent from the list, click the appropriate button:
Export - Creates and downloads a CSV file that contains device information (Name, State, Policy,
etc.).
Remove - Removes selected agents from the Agent Table. This does not uninstall the agent from the
device.
Manage Enterprise Advanced Threats - Certificate
The Certificate tab allows you to upload a certificate for the purpose of safelisting it.
To upload a certificate, follow these steps:
1. Navigate to Populations > Enterprise > Advanced Threats tab > Certificate tab.
2. Click Browse.
3. Select a certificate and click Open.
4. Click Upload Certificate.
5. At the Upload Successful dialog, click OK.
For instructions about how to safelist a certificate, see Manage Enterprise Advanced Threats - Global List
.