Support

Support for business applications

Kaspersky Managed Detection and Response

Monitoring dashboards in MDR Web Console

Kaspersky Managed Detection and Response
Online Help
FAQ Download Forum Contact support Recovery tools

Monitoring dashboards in MDR Web Console

August 7, 2024

ID 200027

MDR Web Console provides monitoring dashboards to view summary information.

To view the dashboards:

  1. In MDR Web Console, navigate to the Monitoring menu item.

    The Summary page opens.

  2. The following dashboards are present on the Summary page:
    • Maximum number of assets for this license

      This is a pie chart that shows the number of connected assets versus the maximum number of assets available for the license.

    • Assets by status

      This is a pie chart that shows the distribution of assets by their status.

    • Active incidents

      This is a pie chart that shows the distribution of active incidents, according to their statuses.

    • Responses

      This is a pie chart that shows the distribution of responses, according to their statuses.

      The number of connected assets represents assets that were seen in MDR Web Console in the last 7 days. If you want to get the number of connected assets for a specific period of time, navigate to the Assets menu item of MDR Web Console.

    • Telemetry statistics

      This is a dashboard that shows the telemetry statistics of the MDR solution for a client, including statistics by specific tenants. You can view data for 1 day, 7, 30, 90, 180 days, for 1 year, or for the entire period a client continuously uses the MDR solution.

      This dashboard displays the number of each of the following objects:

      • Telemetry events are all of the events sent from a client’s assets to Kaspersky Managed Detection and Response.
      • Suspicious events are telemetry events that Kaspersky Managed Detection and Response determines as events that require additional check.
      • Security events are telemetry events that the detection rules determine as potential incidents.
      • Incidents are actions that the detection technology determines as critical. Incidents require immediate reaction (response action) from Kaspersky Managed Detection and Response.
      • Detection rules triggered is a number of unique detection rules triggered on specified telemetry events for a specified time period.
    • Number of incidents

      This is a dashboard that shows the number of incidents and their statuses, by day of the week.

Dashboards are updated with every refresh of the Summary page.

See also:

Asset statuses

How to avoid loss of telemetry data from assets

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.