For security officers: Getting started with the application web interface

This section is intended for specialists who are in charge of providing data security within an organization. It contains information and instructions on configuring resources for the security of a corporate IT infrastructure and timely detection of threats.

The application allows multiple security officers to work together.

In this Help section Kaspersky Anti Targeted Attack Platform Interface Selecting a tenant to manage in the web interface of the application Monitoring the performance of the application Managing technologies Viewing the alert table Configuring the alert table display Filtering, sorting, and searching alerts Recommendations for processing alerts Viewing alerts User actions performed on alerts Monitoring network traffic events Monitoring of observables Monitoring of access to cloud services by employees of the organization Managing assets Configuring address spaces Managing the network interactions map Monitoring network sessions Monitoring risks Configuring NDR event types Configuring risk types Selecting operating systems to use when scanning objects in Sandbox Managing user-defined rules Managing objects in Storage Managing reports Managing rules for assigning the VIP status to alerts Managing allow rules for NDR events Managing the list of scan exclusions Managing Intrusion Detection rule exclusions Managing ICAP exclusions Managing exclusions from observables Managing mirrored traffic from SPAN ports Retrospective analysis of traffic Creating a list of passwords for archives Managing Central Node or Sensor server information Viewing Central Node settings Viewing the table of servers with the Sandbox component Viewing the settings of the set of operating systems used for scanning objects in Sandbox Viewing the table of external systems

Page top