From the Asset Group List view, you can display the details of an asset groupAsset groups are administratively created objects that group similar assets for specific purposes..
To view the details of an asset group
- Navigate to ENVIRONMENT > ASSET GROUPS.
Click the blue chevron icon () located next to the asset groupname whose details you want to view.
- Select Full Details.
In the asset groups details, on the upper left side of the page, you see the name, the description, the type of grouping, the number of assetsAn IP-addressable host, including but not limited to network devices, virtual servers, and physical servers. that are part of that group, and the criteria of grouping.
On the right, you see the status summary for your asset group. It displays the total number of configuration issuesAn identified configuration of software deployed, or features of software in use, which is known to be insecure., vulnerabilities, alarmsAlarms provide notification of an event or sequence of events that require attention or investigation., and eventsAny traffic or data exchange detected by AlienVault products through a Sensor, or through external devices such as a firewall.. The circle can display in orange (for alarms and configuration issues), blue for events, and red for vulnerabilities. There is a number inside each circle to indicate the number of alarms, events, vulnerabilities and configuration issues associated with the members of the asset group. You can click on each circle to explore the information of each one.
Note: Configuration Issues are only available for AWSSuite of cloud computing services from Amazon that make up an on-demand computing platform. Sensors.
At the bottom, there is a table area with tabs, some of which correspond to the circles. Each tab contains a table with records, if present, for your asset group.
Assets that are part of the group. Click View to go to the details of the asset
|Software||Software installed on the assets of the group|
|Services||Services available on the assets of the group|
|Alarms||Alarms related to the assets of the group.
|Events||Events related to the assets of the group. Click on an event to see its details|
|Vulnerabilities||Vulnerabilities related to the assets of the group. You can filter the active or inactive vulnerabilities by clicking the specific radio button. Click on a vulnerabilityA known issue or weakness in a system, procedure, internal control, software package, or hardware that could be used to compromise security. to see its details|
|Configuration Issues||Information about operational processes. You can filter the active or inactive configuration issues by clicking the specific radio button. Click on a configuration issue to see its details|
|History||Additions and removals to the group|
|Scan History||List of the asset scans already run. It includes a time-stamp of the scan, the scan type, the status, and the details of each scan.|
The button Actions, located on the upper right side of the page, allows you to access to the following options
- Configure Asset Group, see Configuring an Asset Group for further details.
- Delete Asset Group, see Deleting an Asset Group for further details.
- Edit Fields. This option is similar to the one for Assets, see To assign asset fields to a group of assets for further details.
- Assign Credentials to Group Members. This option assigns credentials to the members of the asset group. This option is similar to the one for Assets, see Managing Credentials in USM Anywhere for further details.
- Assign Agent Profile. This option assigns a specific agent profile to the members of the asset group. See Assigning AlienVault Agent Configuration Profiles to Asset Groups for further information.
- Set Sensor, see To assign a sensor to an asset group for further details.
- Asset Group Scan. This option is similar to the one for Assets, see Running Asset Scans.
- Assign Credentials. This option assigns credentials to current members of the Asset Group and Assets added to the group later. See Managing Credentials in USM Anywhere for further details.
- Authenticated ScanAuthenticated scans are performed from inside the machine using a user account with appropriate privileges.. This option is similar to the one for Assets, see Running Authenticated Asset Scans.
- Schedule Scan Job. This option is similar to the one for Assets, see Scheduling Asset Scans for further details.
Note: Keep in mind if you assign an asset field to an asset group, you assign the asset field to its members, not to the asset group.