{{ $t('productDocDetail.updateTime') }}: 2026-01-05

Description

The Dashboard page under aSecurity displays security information about HCI, including pending security risks, asset risk analysis, risk trend analysis, and security defense and response analysis.

Prerequisites

1. You have enabled security protection and cyber attack protection on the Security Capabilities page.
2. You have added the target VM to the data protection policy.
3. The platform has at least one cyber attack protection policy.

Precautions

1. Automatically fixed security events are updated at 0:00 every day but not in real time.
2. If virtual patching is enabled for a VM, the platform applies the virtual patch to all VMs with the same vulnerability by default.

Steps

1. Go to aSecurity > Dashboard to get a security overview. In the upper area of the page, pending security risks are displayed, including security events, vulnerability events, and unprotected assets. You can click Fix Now next to an event to quickly go to the fixing page. Pending security risks include pending vmTools installation or security protection solution configuration for new assets, ransomware, ordinary risks, hot events, and ordinary vulnerabilities.

• vmTools: The platform helps you quickly locate new VMs without vmTools in the dashboard, and you can click Console in the Operation column for quick installation.

• Security protection solution: The platform helps you quickly locate new VMs without the security protection solution in the dashboard, and you can click Configure Protection Solution in the Operation column for configuration.

Install security components for VMs to enable the security protection feature.

Add VMs to data protection policies to implement automatic snapshot creation for VMs every day and quickly recover business data in the case of virus infection.

Configure cyber attack protection policies for VMs to synchronize with all cyber attack protection policies in section 9.3.3 "Cyber Attack Protection."

• Ransomware: If ransomware is detected, the platform helps you quickly locate the VMs under risk in the dashboard and provides a fixing wizard.

• Ordinary risks: If an ordinary risk, such as a virus, brute-force attack, or cyber attack is detected, the platform helps you quickly locate the VMs under risk in the dashboard and provides a fixing wizard.

• Hot events: Indicate high severity vulnerabilities. On the details page of a hot event, virtual patches can be applied on the affected VMs based on the associated cyber attack protection rule for the vulnerability. A rule will be automatically created if not matched.

• Ordinary vulnerabilities: Indicate the vulnerabilities except for the above-mentioned ones. If vulnerabilities are detected, the platform helps you quickly locate them in the dashboard. Currently, Windows vulnerabilities can be quickly fixed, and Linux and application vulnerabilities can be prevented through virtual patching.

2. On the Asset Risk Analysis tab, view VMs with risks at different levels. You can click a risk level to go to the VM Security tab and filter VMs at this level quickly.

3. On the Risk Trend Analysis tab, view the trend of different risks, including virus events, cyber attacks, and vulnerabilities, helping you troubleshoot different security risks in a timely manner.

4. On the Security Defense and Response Analysis tab, view the VM security events that are automatically detected and fixed by Sangfor Engine Zero, Gene Analysis Engine, Behavioral Analysis Engine, and Cloud-Based Engine.