Using dashboards and queries

Dashboards allow you to keep constant watch on your environment. Dashboards are collections of monitors, or reports. Monitors can be anything from a chart-based query to a small web application that is refreshed at a user-configured interval.

You can create your own dashboards from query results or use the McAfee Policy Auditor default dashboards. Users must have the appropriate permissions to use and create dashboards.

Are you setting up dashboards for the first time?

When setting up dashboards for the first time:

  1. Decide which default dashboards and default monitors that you want to use.

  2. Create any needed dashboards and their monitors.

See the McAfee ePO documentation for detailed information about how to build query reports that can be added to a dashboard.

Reporting queries and systems deleted from the System Tree

McAfee Policy Auditor deletes audit results based on the policy audit retention settings. This means that audit results are not deleted when a system is removed from the McAfee ePO System Tree. Because of this, McAfee Policy Auditor reporting queries cannot use permissions based on the System Tree or a subset.

If a McAfee ePO user has access to run or create report queries, the report shows audit results for all systems that have had results collected and maintained according to the policy audit retention settings. This also applies to systems deleted from the System Tree.