At a high-level, you can use this document to learn how to improve your health scores, which will improve the overall security status of your environment.
Note |
---|
Based on your specific environment, you may need to perform additional steps that are not listed in this document. You can always contact Armor Support to determine how to improve the scores for your specific environment. |
Step 1: Review Your Overall Health Score
- In the Armor Management Portal (AMP), in the landing page, review your Overall Health Score.
- This score is based on the average of the Protection, Detection, and Response scores.
- Review your Score Trends graph.
- If you see a downward trend for any of the score types, consider any recent changes you have made in your environment, such as:
Network or firewall changes
Upgrades or migrations
Application changes
Resource upgrades or downgrades on your server instances
OS or kernel patches
- If you see a downward trend for any of the score types, consider any recent changes you have made in your environment, such as:
Step 2: Review Your Protection Score
- In the Armor Management Portal (AMP), in the left-side navigation, click Protection.
- Under the Service Health table, click Needs Attention.
- This action will display specific issues for your virtual machine that you can resolve to improve your score.
Step 3: Review Your Detection score
- In the Armor Management Portal (AMP), in the left-side navigation, click Detection.
- Under the Top Vulnerabilities table, click a specific vulnerability type.
- This action will take you the Vulnerability Scanning details screen where you can view a description of the vulnerability and the affected virtual machine.
Step 4: Review Your Response Score
The Response score is based on how long Armor or you (or someone on your account) take to respond to a Security Incident. As a result, to improve your score, be sure to promptly reply to a support ticket from Armor.
Note |
---|
You can update your notification settings so that you are notified about a support ticket via email. To learn more, see Configure notification preferences. |
Step 5: Open a Support Ticket
To learn how to specifically improve the health scores of your environment, you can always send a support ticket.
...
Excerpt | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Malware - Armor troubleshoots servers that contain Malware Protection subcomponents in a Warning or Critical status. To troubleshoot with Armor, you must submit a support ticket. FIM - Armor troubleshoots servers that contain File Integrity Monitoring subcomponents in a Warning or Critical status. To troubleshoot with Armor, you must submit a support ticket. Patching - You are responsible for implementing patches. Some common issues are:
https://kb.firehost.co/display/AA/General+PDR+Score+Troubleshooting THE RULES
Logging and r7:
|