Remote Monitoring & Management Help

Enable Risk Intelligence and select Policy

Risk Intelligence deployment can be tailored to match your precise protection requirements, it is deployable across the entire customer base on every Windows server or workstation, at selected Clients or Sites down to individual computers.

When configuring Risk Intelligence choose the Policy, this controls each aspect of Risk Intelligence from which scans to run (Security Scan, PCI Scan, Data Breach Risk Scan) to their schedule (Daily, Weekly, Monthly or on-demand).

Risk Intelligence is policy driven and by default servers and workstations will inherit policy from site, which will in turn inherit from client, which will in turn inherit policies set for all servers and workstations.

Multiple Devices

Servers and workstations inherit their configuration from the site, which will in turn inherits from the client, which will in turn inherits the default configuration for all servers and workstations.

  1. Log into the Dashboard
  2. Go to Settings > Risk Intelligence > Settings
  3. Select the Entity type to enable Risk Intelligence on (all servers and workstations or servers and workstations at specific clients and sites)
  4. We use dots in the Settings dialog to make it easier to spot if the feature is enabled or disabled at the entity level, and whether devices under an entity have the same settings.

     

    • Green - Feature or functionality enabled for all devices under that entity. This includes device level settings
    • Gray - Feature or functionality disabled on at least one device under that entity. This includes device level settings
    • Orange – One of the child entities has a different configuration to the parent. Where a Client only has one Site, its status indicator reflects that of the Site.

    For further information on each of these states, please refer to Feature and Functionality Settings Iconography.

  5. Change Setting to On, Off or Use Parent (only for Client or Site)
  6. When Setting: On choose the policy to apply to the selected entity from the drop-down. This includes the default Server, Desktop and Laptop policies (depending on selection), but also any custom policies that are available for the selected device type.
  7. OK to save and apply

Individual Device

You can enable Patch Management for specific servers and workstations, for example to exclude the device from the default entity policy or only apply Patch Management on certain computers.

Once selected device level settings take precedence over those set at the policy level. Where the device settings have changed, to place the device back under policy control please select Use Policy Settings.

  1. Log into the Dashboard
  2. Right-click on the device in the north pane (or from the Edit Server or Edit Workstation drop-down)
  3. Edit Server or Edit Workstation
  4. Click Risk Intelligence
  5. Change Setting to On, Off or Use Parent (only for Client or Site)
  6. When Setting: On choose the policy to apply to the selected entity from the drop-down. This includes the default Server, Desktop and Laptop policies (depending on selection), but also any custom policies that are available for the selected device type.
  7. OK to save and apply

Risk Intelligence Automated Tasks and feature Status

Once enabled, the Risk Intelligence Scan Automated Tasks associated with the policy are deployed to the selected devices where they will run based on the configured schedule. Please be aware that the Risk Intelligence Scan Automated Tasks deployed via Risk Intelligence policies are only managed through the corresponding policy and are excluded from the Edit or Delete Automated Task options.

For visibility the Risk Intelligence status is reported in the Agent Support Features section of the Summary tab of the device. For a list of all of the policies currently in use across your policy supporting features, please refer to the Feature Policy Report.