Endpoint Activity
MAC address - Use this search criterion to filter the endpoint list by MAC address. Wildcards (*) are
●
allowed (for example, 00:13:*).
Operating system - Use this search criterion to filter the endpoint list by operating system.
●
Wildcards (*) are allowed (for example, *windows*).
Computer user ID - Use this search criterion to filter the endpoint list by the ID of a user account
●
logged into an endpoint or endpoints. Wildcards (*) are allowed (for example, *johnson).
Windows domain - Use this search criterion to filter the endpoint list by the Windows domain on
●
which the endpoints are connected. Wildcards (*) are allowed (for example, *ourcompany*).
Access reason - Use this search criterion to filter the endpoint list by the reason the endpoints were
●
given their access status, that is, why they were either quarantined or granted access. The following
options are available:
Quarantined - The following filters apply to quarantined endpoints only.
■
Administratively quarantined - An administrator temporarily quarantined the endpoints using
●
a change access button or link.
Post-connect quarantine - The endpoints were quarantined by an external post-connect service.
●
This option is applicable only if you have configured a post-connect service to be used with
Sentriant AG. For more information, see
NAC policy - The endpoints were quarantined because they failed one or more compliance
●
tests in their assigned NAC policies.
Granted access - The following filters apply to endpoints that have been granted network access
■
only.
Allow all access mode - The endpoints were granted network access because an administrator
●
set their enforcement cluster's Access mode to allow all. If their enforcement cluster's Access
mode had been normal, then these endpoints would have been quarantined.
Administratively granted access - An administrator temporarily granted network access to the
●
endpoints using a change access button or link.
NAC policy - The endpoints were granted network access because they passed all compliance
●
tests in their assigned NAC policy.
Failed test - Use this search criterion to filter the endpoint list by a compliance test that the
●
endpoints failed.
Testing method - Use this search criterion to filter the endpoint list by the method used to test the
●
endpoints for compliance with their assigned NAC policies.
NAC policy - Use this search criterion to filter the endpoint list by the NAC policy used to
●
compliance-test the endpoints.
Enforcement cluster - Use this search criterion to filter the endpoint list by the enforcement cluster
●
controlling network access of the endpoints.
Connection status - Use this search criterion to filter the endpoint list by the connection status, either
●
currently connected to or disconnected from the network. This search criterion is available only if
you are not viewing Connected endpoints or its sub-categories, selected on the left-hand side of this
screen.
Last activity time - Use this search criterion to filter the endpoint list by the last time the endpoints
●
were observed on the network.
To use secondary filtering, do the following:
1 Select any or all of the search criteria described above.
2 Select one of the following from the Endpoints must match drop-down list:
142
"Configuring the Post-connect Server" on page
Sentriant AG Software Users Guide, Version 5.3
381.