The Cortex Xpanse Remote Attack Surface dashboard provides a consolidated view of your remote worker attack surface.
The Cortex Xpanse Remote Attack Surface dashboard provides a consolidated view of your remote worker attack surface, with the ability to drill down into the details of the issues, services, devices, and networks that make up your remote attack surface.
Note
The Cortex Xpanse Remote Attack Surface dashboard is available to customers who have API integration between Cortex Xpanse and Cortex XDR or GlobalProtectâ„¢. For information see Cortex XDR API Connector and GlobalProtect API Connector.
At the top of the Remote Attack Surface dashboard page are the dashboard filters, the Share Dashboard button, and Last Updated date.
Use the dropdown filters to filter the data in the Remote Attack Surface dashboard.
Click Share Dashboard to copy the link to the dashboard, including your current filter settings, to your clipboard.
Last Updated provides the date of the most recent refresh for the dashboard data. Changes to data may take 24 hours to appear in the dashboard.
Remote Attack Surface Dashboard Widgets
The Remote Attack Surface dashboard contains the following widgets:
Active Workforce Networks
Displays the number of active Workforce Networks, as well as a breakdown of Corporate and Remote Networks.
Click the Active Networks count to display the list of your Workforce Networks with the status Active.
Click the Remote or Corporate counts to display the list of active Workforce Networks with the Remote or Corporate network type filter applied.
Click All Workforce Networks to display the list of all your networks.
Total Workforce Devices
Displays the overall number of your Workforce Devices, as well as a breakdown of workforce devices on your Remote and Corporate Networks. The change in the Total Workforce Devices count in the last 30 days is displayed next to the overall count. The graph displays the overall Total Workforce Device trend over time.
Click the Total Workforce Devices count to display a complete list of your workforce devices.
Mouse over the graph to display the Workforce Device count for a specific date.
Click the Remote Network or Corporate Network device counts to display the device list with the Remote Network or Corporate Network filter applied.
Click All Workforce Devices to display the complete list of your Workforce Devices.
Total Active Issues
Displays the number of active issues on your workforce networks, as well as a list of the top 5 issue types. The change in the Total Active Issues count in the last 30 days is displayed next to the overall count. The graph displays the trend in Active Network Issues on your workforce networks over time.
Mouse over the graph to display the number of Active Issues on your workforce networks on a specific date.
Click the Active Issues counts for the Top Issue Types to display the Issues list with the Issue Type filter applied.
Click All Active Issues to display the complete list of Active Issues on your workforce networks.
Total Active Services
Displays the total number of active services running on your workforce networks, as well as a list of the top 5 Service Classifications.
The change in the Total Active Services count in the last 30 days is displayed next to the overall count. The graph displays the trend in Active Services on your workforce networks over time.
Click in the graph to display the number of Active Services on your workforce networks on a specific day.
Click the Total Active Services count to display the complete list of Issues on your workforce networks.
Click All Active Issues to display the complete list of Active Issues on your workforce networks.
Remote Attack Surface Map
Displays a map view of the locations of your Corporate and Remote Networks.
Mouse over a location to see the number of Corporate and Remote Networks.
Workforce Issues by Severity
Displays the number Workforce Issues broken down by severity.
Click the Issue counts to display the Workforce Issues list filtered by Critical and High, Medium, or Low severity.
Top Networks with Critical and High Issues
Displays the eight networks with highest number of critical and high issues. For each network, the network IP, the number of critical and high issues, and the number of critical and high issues over the last seven days is displayed.
Click the Network Public IP to display the Network details page for that network.
Click the issue count to display the Issues list filtered by the Network Public IP and a critical or high severity.
Click All Networks with Critical/High Issues to display the Issues list filtered by Workforce Networks and critical and high severity.
Open Issues Progress
Displays the number of Acceptable Risk, No Risk, and Resolved issues for the top 10 Issue types for your workforce devices.
Click in the bar graph to display the list of Workforce Issues with the relevant Issue Type and Progress filters applied.
Click Open Issues In Progress to display the list of Workforce Issues with the In Progress filter applied.