Skip to main content

Checking the endpoints status

Checking the computers status

Each computer is represented in the network page by an icon specific to its type and status.

Refer to Network object types and statuses for a list with all available icon types and statuses.

For detailed status information, refer to:

Management status

Computers can have the following management statuses:

  • computer_managed_online.png Managed - computers on which the security agent is installed.

  • vm_pending_restart.png Pending restart - endpoints that require a system restart after installing or updating Bitdefender protection.

  • computer_unmanaged_offline.png Unmanaged - detected computers on which the security agent has not been installed yet.

  • computer_deleted.png Deleted - computers that you have deleted from Control Center.

Connectivity status

The connectivity status concerns only the managed computers. From this viewpoint, managed computers can be:

  • computer_managed_online.png Online.

    A blue icon indicates that the computer is online.

  • computer_managed_offline.png Offline.

    A grey icon indicates that the computer is offline.

A computer is offline if the security agent is inactive for more than 15 minutes. Possible reasons why computers appear offline:

  • The computer is shut down, sleeping or hibernating.

    Note

    Computers appear online even when they are locked or the user is logged off.

  • The security agent does not have connectivity with the GravityZone Communication Server:

    • The computer might be disconnected from the network.

    • A network firewall or router might block the communication between the security agent and the GravityZone Communication Server.

    • The computer is behind a proxy server and the proxy settings have not been properly configured in the applied policy.

      Warning

      For computers behind a proxy server, the proxy settings must be properly configured in the security agent installation package, otherwise the computer will not communicate with GravityZone console and will always appear offline, no matter if a policy with the proper proxy settings is applied after installation.

  • The security agent might not be working properly.

To find out for how long computers have been inactive:

  1. Display only the managed computers. Click the Filters menu located at the upper side of the table, select all the "Managed" options that you need from the Security tab, choose All items recursively from the Depth tab and click Save.

  2. Click the Last seen column header to sort computers by inactivity period.

You can ignore shorter periods of inactivity (minutes, hours) as they are likely the result of a temporary condition.

For example, the computer is currently shut down.

Longer inactivity periods (days, weeks) usually indicate a problem with the computer.

Note

It is recommended to refresh the network table from time to time, to update the endpoints information with the latest changes.

Security status

The security status concerns only the managed computers. You can identify computers with security issues by checking the status icons displaying a warning symbol:

  • computer_managed_online_issue.png Computer managed, with issues, online.

  • computer_managed_offline_issue.png Computer managed, with issues, offline.

A computer has security issues provided at least one of the following situations applies:

  • Antimalware protection is disabled.

  • The license has expired.

  • The security agent product is outdated.

  • Security content is outdated.

  • Malware is detected.

  • The security agent is compromised.

  • The connection with Bitdefender Cloud Services could not be established, due to the following possible reasons:

    • The computer has internet connectivity issues.

    • A network firewall is blocking the connection with Bitdefender Bitdefender Cloud Services.

    • Port 443, required for the communication with Bitdefender Bitdefender Cloud Services, is closed.

    In this case, the antimalware protection relies solely on local engines, while in-the-cloud scanning is off, meaning that the security agent cannot provide full real-time protection.

If you notice a computer with security issues, click its name to display the Information window.

You can identify the security issues by the critical.png icon. Make sure to check for security information in all the information page's tabs.

Display the icon's tooltip to find out more details.

Further local investigations may be needed.

Note

It is recommended to refresh the network table from time to time, to update the endpoints information with the latest changes.

Checking the virtual machines status

Each virtual machine is represented in the network page by an icon specific to its type and status.

Refer to Network object types and statuses for a list with all available icon types and statuses.

For detailed status information, refer to:

  • Management status

  • Connectivity status

  • Security status

Management status

Virtual machines can have the following management statuses:

  • vm_online_managed.png Managed - virtual machines on which Bitdefender protection is installed.

  • vm_pending_restart.png Pending restart - virtual machines that require a system restart after installing or updating Bitdefender protection.

  • vm_offline_unmanaged.png Unmanaged - detected virtual machines on which Bitdefender protection has not been installed yet.

  • vm_deleted.png Deleted - virtual machines that you have deleted from Control Center.

    For more information, refer to Deleting endpoints from network inventory.

Connectivity status

The connectivity status concerns managed virtual machines and Security Servers. From this viewpoint, managed virtual machines can be:

  • vm_online_managed.png sva.pngOnline. A blue icon indicates that the machine is online.

  • vm_offline_managed.png sva_offline.png Offline. A grey icon indicates that the machine is offline.

A virtual machine is offline if the security agent is inactive for more than 15 minutes. Possible reasons why virtual machines appear offline:

  • The virtual machine is shut down, sleeping or hibernating.

    Note

    Virtual machines appear online even when they are locked or the user is logged off.

  • The security agent does not have connectivity with the GravityZone Communication Server:

    • The virtual machine might be disconnected from the network.

    • A network firewall or router might block the communication between the security agent and Bitdefender Control Center or the assigned Endpoint Security Relay.

    • The virtual machine is behind a proxy server and the proxy settings have not been properly configured in the applied policy.

      Warning

      For virtual machines behind a proxy server, the proxy settings must be properly configured in the security agent installation package, otherwise the virtual machine will not communicate with GravityZone console and will always appear offline, no matter if a policy with the proper proxy settings is applied after installation.

  • The security agent has been manually uninstalled from the virtual machine, while the virtual machine did not have connectivity with Bitdefender Control Center or with the assigned Endpoint Security Relay. Normally, when the security agent is being manually uninstalled from a virtual machine, Control Center is notified of this event, and the virtual machine is flagged as unmanaged.

  • The security agent might not be working properly.

To find out for how long virtual machines have been inactive:

  1. Display only the managed virtual machines. Click the Filters menu located at the upper side of the table, select all the "Managed" options that you need from the Security tab, choose All items recursively from the Depth tab and click Save.

  2. Click the Last Seen column header to sort virtual machines by inactivity period.

You can ignore shorter periods of inactivity (minutes, hours) as they are likely the result of a temporary condition.

For example, the virtual machine is currently shut down.

Longer inactivity periods (days, weeks) usually indicate a problem with the virtual machine.

Note

It is recommended to refresh the network table from time to time, to update the endpoints information with the latest changes.

Security status

The security status concerns managed virtual machines and Security Servers. You can identify virtual machines or Security Servers with security issues by checking the status icons displaying a warning symbol:

  • vm_online_managed_vulnerable.png

    sva_issues.png

    With issues.

  • vm_online_managed.png

    assign_sva.png

    Without issues.

A virtual machine or a Security Server has security issues provided at least one of the following situations applies:

  • Antimalware protection is disabled (only for virtual machines).

  • The license has expired.

  • The Bitdefender product is outdated.

  • Security content is outdated.

  • Malware is detected (only for virtual machines).

  • The connection with Bitdefender Bitdefender Cloud Services could not be established, due to the following possible reasons:

    • The virtual machine has internet connectivity issues.

    • A network firewall is blocking the connection with Bitdefender Bitdefender Cloud Services.

    • Port 443, required for the communication with Bitdefender Bitdefender Cloud Services, is closed.

    In this case, the antimalware protection relies solely on local engines, while in-the-cloud scanning is off, meaning that the security agent cannot provide full real-time protection.

If you notice a virtual machine with security issues, click its name to display the Information window.

You can identify the security issues by the critical.png icon. Make sure to check for security information in all the information page's tabs.

Display the icon's tooltip to find out more details.

Further local investigations may be needed.

Note

It is recommended to refresh the network table from time to time, to update the endpoints information with the latest changes.

The endpoints that do not receive any updates in the past 24 hours are automatically marked With issues, regardless of the security content version present on the relay or on the GravityZone Update Server.

Checking the container status

Each container is represented in the network page by an icon specific to its type and status.

Refer to Network object types and statuses for a list with all available icon types and statuses.

Security status

You can identify containers with security issues by checking the status icons displaying a warning symbol:

Containers

  • container_no_issues.png - no issues

  • container_with_issues.png - with issues

Container hosts

  • container_host_no_issues.png - no issues

  • container_host_with_issues.png - with issues

Security Containers

  • security_container_no_issues.png - no issues

  • security_container_with_issues.png - with issues

A container has security issues provided at least one of the following situations applies:

  • Antimalware protection is disabled.

  • The license has expired.

  • The Bitdefender product is outdated.

  • Security content is outdated.

  • Malware is detected.

  • The connection with Bitdefender Bitdefender Cloud Services could not be established, due to the following possible reasons:

    • The container has internet connectivity issues.

    • A network firewall is blocking the connection with Bitdefender Bitdefender Cloud Services.

    • Port 443, required for the communication with Bitdefender Bitdefender Cloud Services, is closed.

    In this case, the antimalware protection relies solely on either the host agent or the host's Security Container, while in-the-cloud scanning is off, meaning full real-time protection is not available.

If you notice a container with security issues, click its name to display the Information window.

You can identify the security issues by the critical.png icon. Make sure to check for security information in all the information page's tabs.

Display the icon's tooltip to find out more details.

Further local investigations may be needed.

Note

It is recommended to refresh the network table from time to time, to update the endpoints information with the latest changes.

The endpoints that do not receive any updates in the past 24 hours are automatically marked With issues, regardless of the security content version present on the relay or on the GravityZone Update Server.

Checking the mobile devices status

Each mobile device is represented in the network page by an icon specific to its type and status.

Refer to Network Object Types and Statuses for a list with all available icon types and statuses.

Mobile devices can have the following management statuses:

  • mobile_managed_online.png Managed (Active), when all the following conditions are satisfied:

    • The GravityZone Mobile Client is activated on the device.

    • The GravityZone Mobile Client has synchronized with the Control Center within the last 48 hours.

  • mobile_managed_offline.png Managed (Idle), when all the following conditions are satisfied:

    • The GravityZone Mobile Client is activated on the device.

    • The GravityZone Mobile Client has not synchronized with the Control Center for more than 48 hours.

  • mobile_unmanaged.png Unmanaged, in the following situations:

    • The GravityZone Mobile Client has not yet been installed and activated on the mobile device.

    • The GravityZone Mobile Client has been uninstalled from the mobile device (for Android devices only).

    • The Bitdefender MDM profile has been removed from the device (for iOS devices only).

To check the devices management status:

  1. Log in to GravityZone Control Center.

  2. Go to the Network page from the left side menu.

  3. Choose Mobile Devices from the views selector.

  4. In the left-side pane, select the group you are interested in.

  5. Click the Filters menu located at the upper side of the table and make the following settings:

    1. Go to View tab and select Devices.

    2. Go to Security tab and select the status you are interested in under Management section. You can select one or several filter criteria at the same time.

    3. You can also choose to view all devices recursively, by selecting the corresponding option in the Depth tab.

    4. Click Save.

      All the mobile devices corresponding to the selected criteria are displayed in the table.

You can also generate a Device Synchronization status report on one or several mobile devices.

This report provides detailed information regarding the synchronization status of each selected device, including the date and time of the last synchronization.

For more information, refer to Creating Quick Reports