Skip to main content

Security Server

Security Server Multi-Platform

Check the status of the virtualization providers in GravityZone

To deploy the Security Server Multi-Platform from GravityZone, you need to integrate GravityZone with your virtualization provider. In the following example GravityZone is integrated with VMware.

To check the integration, you must go to the Configuration > Virtualization Providers > Management Platforms page. The integration must have the following statuses:

  • Sync status: Synchronized

  • Progress status: Finished

sva_op_mp_gz.png

Check the Security Server status in GravityZone

To check the integration, you must go to Network > Cloud Workloads > VMware Inventory > vCenter and select your server you want the status for.

sva_op_mp_status.png

Check if the virtual machines are protected by the Security Server

To check if the virtual machines are protected by the Security Server, they must be listed under Computers and Groups > Groups > select the virtual machine > Protection > Associated Security Servers or under Cloud Workloads > Inventory > select your virtual machine > Protection > Associated Security Servers.

This can be configured during the installation or from the policy.

In addition, the Primary scan engine must be set to Central Scan.

sva_op_mp_check.png

You can also generate a Security Server Status Report from GravityZone to check if the Security Server has any connected clients.

sva_op_mp_client.png

Security Server NSX

Check the status of the VMware and NSX Manager in GravityZone

NSX-V

To check the integration, you must go to Configuration > Virtualization Providers > Management Platforms. The integration must have the following statuses:

  • Sync status: Synchronized

  • Progress status: Finished

  • Action: Registered

sva_op_nsx-v_status.png

NSX-T

To check the integration, you must go to Configuration > Virtualization Providers > Management Platforms. The integration must have the following statuses:

  • Sync status: Synchronized

  • Progress status: Finished

sva_op_status_nsx-t_1.png

You can also check the integration in: Configuration > Virtualization Providers > Security Providers. The status of the Server Integrated tab must be: 1/1.

sva_op_status_nsx-t_2.png

Check the Security Server deployment status in vCenter

NSX-V

The Installation Status and Service Status can be checked in the Networking and Security > Installation and Upgrade > Service Deployment page, under the Bitdefender service.

sva_op_nsx-v_vcenter.png

NSX-T

The status can be checked in the NSX-T manager, under System > Service Deployments > Deployment.

sva_op_nsx-t_vcenter_1.png

You can also check the Deployment Status and the Health Status in the System > Service Deployments > Service Instances page.

sva_op_nsx-t_vcenter_2.png

Note

If the Health Status is Ready instead of Up, the Security Server has not received any events from the virtual machines. This means that the virtual machines are not added to a security group or that they have no policies applied to them in the NSX-T Manager.

Check the Security Server status in GravityZone

The Security Server status can be checked in your selected server, in the Network > Cloud Workloads > VMWare Inventory > vCenter page.

If all Product details are listed without any critical issues, the Security Server is active.

sva_op_status.png

Check if the virtual machines are protected by the Security Server

To check if the virtual machines are protected by the Security Server, you must:

  1. Create a security group in the NSX Manager.

  2. Add the virtual machines which should be protected.

  3. Create a policy from GravityZone.

  4. Apply it to the security group from the NSX Manager.

  5. Check if the policy is applied and displayed in GravityZone.

    sva_op_nsx_policy.png

  6. In General > Protection Layers, the Endpoint protection must be set as Active.

    sva_op_nsx_endpoint_active.png

  7. The following information must be displayed in GravityZone > Computer and Details > Protection:

    1. The Security Group to which the virtual machine was added.

    2. The Virus tag, that is displayed when a virus is detected.

    3. The associated Security Server.

    4. The Antimalware module enabled.

      sva_op_nsx_protection.png

  8. Create an antimalware test file on a protected virtual machine to check if it is detected by the Security Server:

    1. Download a test file from eicar.

    2. Check if the file is detected in:

      1. vCenter - the virus tag detected with the malware file is displayed in the Security Tags section:

        sva_op_nsx_vcenter_tag.png

      2. GravityZone - the Virus tag displays the following error message:

        sva_op_nsx_vcenter_tag2.png
In this section: