Secure Workload metrics

Secure Workload Metrics offers an overview of key performance indicators and configurations for customer accounts. It provides detailed insights into trial health, agents activity, aplications, and integrations, enabling you to monitor adoption and enhance system performance, see image below.

Trials by health category

This section reperesents number of trials by each health category. Types of health category and theire definnifgs are next:

  • Fresh: Activated within the last 7 days.

  • At Risk: Activated more than 7 days ago but don't have agents (1), inventory (2) and aplications (3).

  • Stale: Same as for "At Risk" and customer has not logged in within last 7 days.

  • Growing: have at least one of inventory, agents or applications present .

  • Ripe: Have no licenses(4) installed

Where:

  1. agents - it's sum of Windows, Linux, Aix and Solaris users connected;

  2. inventory - inventory is the IP addresses of all the workloads on your network, annotated with labels and other data that describes them. Your inventory includes workloads running on bare metal or virtual machines, in containers, and in the cloud. If applicable, it may also include workloads running on partner networks;

  3. aplications - the total number of applications onboarded/scoped within the hybrid cloud environment at the time the telemetry was recorded.

  4. licenses - number of licenses purchased.

Agents

In this section is shown a number of customers by:

  • Agents divided by OS they are using;

  • Active agents - agents checking in with the control plane;

  • Flow export working - agents for which flow export is working, a critical health indicator as described in the secure workload user interface;

  • Flow export stopped - agents for which flow export has stopped, a critical health indicator as described in the secure workload user interface;

  • Enforsment agents with visibility enabled;

  • Agents with Forensics enabled - agents that have the Forensics feature enabled. This feature maps the MITRE attack framework to vulnerability detection capabilities with Secure Workload;

Applications

This section shows number of customers by, aplications and aplications enforsed. Where aplications enforsed is apps which applies policy

Integrations

This sections shows number of customers by next integration types:

  • Netflow integrations;

  • Netscaler integrations;

  • AnyConnect connectors;

  • ISE connectors;

  • Other - these are typically cloud connectors for GCP, Azure, AWS etc. These include Connectors for Endpoints, Connectors for Inventory Enrichment, Connetors for Alert Notifications;