Endpoint Protection

Hi

I am running SEPM 11.0.4000.2295

The dashboard (Home tab) tells me that there is one client with old intrusion prevention signatures
Drilling into the report shows me the exact same information with percentages (wow thanks)

I figured the computer status 'log' would show me which machine has the old signatures, but it only contains A/V definitions.

Does anyone know how I can determine which computer has the old definitions?
This should be simple, but is somehow not obvious in the UI.

Thanks!

I think this depends on how you say old definitions, on the logs, computer status logs, Click the link advance settings, then select an old virus def there, then click the button view log.

Paul,

if he wants to see old Intrusion Preventions Signatures, wouldn't he choose IDS version under the advanced settings?

Goto Search Clients in the Group section and select: Search field: Intrustion Prevention Signatures Comparison Operator: = Value: version of the IDS that you are looking for

Ya, sorry made a mistake I thought its Virus Defs.. Peace!

Thank you, this works.
I still would like to see IDS signatures in the computer status report.

Hi Matt, as what Rick said, on the logs, computer status logs, Click the link advance settings, then select Intrusion Prevention. But on the logs it's not displayed even on the exported logs.

However you can do a a summary Report, it will summarize workstations/clients with the Intrusion Prevention Signatures.