Computer Details
| Section | Field | Description |
|---|---|---|
|
General |
||
|
|
IP addresses |
Primary IP address and alias IP address of the computer. |
|
Active Directory path |
Path to the computer in the company Active Directory. |
|
|
Group |
Group in the Cytomic EDR or Cytomic EPDR group tree to which the computer belongs. To change the computer group, click Change. |
|
|
Operating system |
Name of the operating system installed on the computer. |
|
|
Client info |
||
|
|
Client ID |
Identifier of the client to which the computer belongs in the Cytomic Orion systems. |
|
Client name |
Name of the client. |
|
|
Creation date |
Date and time when the client was created in the Cytomic systems. |
|
|
Computer |
||
|
|
Name |
Name of the computer on the client’s network. |
|
|
Type |
Computer type:
|
|
|
Platform ID |
Type of operating system installed on the computer.
|
|
|
MUID |
Unique identifier of the computer in Cytomic Orion. |
|
|
IP addresses |
List of all the IP addresses (primary addresses and aliases) of the computer. |
|
|
Physical addresses (MAC) |
Physical address of the network cards installed on the computer. |
|
|
Domain |
Windows domain the computer belongs to. This is empty if the computer does not belong to a domain. |
|
|
Active Directory path |
Path to the computer in the organizational unit hierarchy. |
|
|
Group |
Group in the Cytomic EDR or Cytomic EPDR group tree to which the computer belongs. To change the computer group, click Change. |
|
|
Operating system |
Name of the operating system installed on the computer. |
|
|
Virtual machine |
Indicates whether the computer is physical or virtual. |
|
|
Is a non-persistent |
Indicates whether the operating system of the virtual machine resides on a storage device that persists between restarts, or reverts to its original state instead. |
|
|
Licenses |
Cytomic product licenses installed on the computer. |
|
|
License status |
|
|
|
Agent version |
Internal version of the Cytomic agent installed on the computer. |
|
|
Agent language |
Language in which Cytomic EDR or Cytomic EPDR shows the local console and pop-up messages. |
|
|
Isolation |
Shows the isolation status of the computer:
|
|
|
Reboot requested |
The computer is pending restart. |
|
|
Creation date |
Date and time when the agent was installed on the user computer and the computer was registered in the Cytomic cloud. |
|
|
Last connection |
Date and time when the client software last connected to the Cytomic cloud. The communications agent connects to the cloud at least every four hours. |
|
|
Last boot time |
Date and time when the computer was last booted. |
|
Security |
||
|
Advanced protection |
Indicates whether the Cytomic EDR or Cytomic EPDR advanced protection module is enabled on the user computer, and the execution mode (Audit, Hardening, or Lock). |
|
|
File antivirus |
Indicates whether the Cytomic EDR or Cytomic EPDR file protection module is enabled on the user computer. |
|
|
Mail antivirus |
Indicates whether the protection for the protocols used to send and receive email is enabled on the user computer. |
|
|
Web browsing antivirus |
Indicates whether the protection against malware downloaded from web pages is enabled on the user computer. |
|
|
Firewall |
Indicates whether the module for protecting against network traffic generated by applications on the user computer is enabled. |
|
|
Device control |
Indicates whether the module is enabled that protects against infections through external storage devices or devices that allow user computers to connect to the Internet bypassing the organization communications infrastructure (USB modems and others devices). |
|
|
Exchange server antivirus |
Indicates whether the module for protecting against viruses received at Microsoft Exchange servers is enabled. |
|
|
Exchange server antispam |
Indicates whether the module for protecting against spam received at Microsoft Exchange servers is enabled. |
|
|
Exchange server content filter |
Indicates whether the protection is enabled for email messages received at Microsoft Exchange servers that could have attachments with dangerous extensions. |
|
|
Web access control |
Indicates whether the module is enabled that protects against users accessing web content not permitted by the administrator. |
|
|
Patch management |
Indicates whether the patch and update module for Windows operating systems and third-party applications is enabled on the user computer. |
|
|
Data control |
Indicates whether the module for tracking personal data is enabled. |
|
|
Antitheft |
Indicates whether the module is enabled that mitigates the exposure of data in the event of theft of an Android device. |
|
|
Encryption |
Indicates whether the file encryption module is enabled on the user computer. |
|
|
Data search control status |
Indicates whether the computer has a Cytomic Data Watch settings profile assigned that allows it to receive file searches and report their results. |
|
|
Protection |
||
|
Protection update status |
Indicates whether the protection module installed on the computer is the latest version released by Cytomic.
|
|
|
Protection version |
Version of the Cytomic EDR or Cytomic EPDR protection module installed on the user computer. |
|
|
Knowledge update status |
Shows whether the computer signature files (knowledge files) match the latest files released by Cytomic.
|
|
|
Knowledge update date |
Date and time when the signature files were last updated on the computer. |
|
|
Data protection |
||
|
Personal data inventory |
Indicates whether you can examine files stored on supported storage devices to create a database on the computer and speed up content retrieval. |
|
|
Personal data monitoring |
Indicates whether the computer has the extensions required to access Microsoft Office files. |
|
|
Indexing status |
Indicates the status of the Cytomic Data Watch indexing engine.
|
|