NOC dashboards and forensics#
As ubiquitous as dashboards have become in network operations center (NOC) workflows, many tools remain limited by the lack of customization options for data sources, gadgets, and auxiliary features.
Scrutinizer dashboards–part of the Plixer One Platform (Core or Enterprise)–can be customized to support and enhance any number of unique user roles and/or workflows.
Overview#
Scrutinizer users are able to create any number of uniquely configured dashboards to support and enhance their individual workflows.
Dashboard management#
When creating a new dashboard, users can choose between starting with a copy of an existing dashboard or populating a “blank” dashboard with their own selection of gadgets.
Existing dashboards also have the following additional management/configuration options:
Set as default |
Selects the dashboard as the default for the current user |
Set as read-only |
Locks dashboard settings and gadgets until toggled off |
Modify user access |
Shows or hides the dashboard for individual users |
Modify user group access |
Shows or hides the dashboard for user groups |
Hint
To change the layout and gadgets for existing dashboards, switch to edit mode while dashboard is active.
Custom Gadgets#
To complement the preconfigured gadgets bundled with Scrutinizer, network maps and reports can also be added to dashboards as gadgets. This allows users to view/access frequently used maps and reports directly from their preferred dashboard(s) instead of navigating to the corresponding sections of the web interface.
Existing network maps or reports (must be exported first) can be added when setting up a new dashboard or while in dashboard edit mode, provided the current user has access via their user group.
External gadgets#
External gadgets are another type of custom gadget that allow Scrutinizer users to embed valuable data from third-party sites (via URL) in their dashboards and further extend visibility.
Hint
External and report-based gadgets can be configured with custom refresh intervals to always display the data that is most relevant to users.
Workflows#
The following workflow(s) show how the Plixer One Platform is able to enable and enhance UI-driven workflows with Scrutinizer Dashboards:
Multi-tenancy dashboards
As part of a multi-tenant environment, the operator wants to provide each customer with a dashboard for their network.
Workflow
Assuming two groups (A and B), each group should have exclusive logins so that only content relating to their group is accessible to their users.
This workflow assumes that each of these groups consists of a location with three network devices sending netflow data:
Firewall
Core Router
Switch
The dashboard should contain a single top conversations report for the group’s network and be accessible to all users under that group/location.
Create a dashboard for each group (e.g., Dashboard A and Dashboard B). This will allow you to export the appropriate reports to them after they have been created.
-
Report configuration
Start by adding devices and select the IP addresses of Firewall A, Core Router A, and Switch A.
Select Conversations App (under the Recommended category as the report type).
Change the time window/range of the report to Last 24 hours.
After running the report, save it under a name associated with Group A (e.g., Top Conversations A)
Click the share button and select Add to Dashboard.
In the secondary tray, select Dashboard A from the Dashboard Tab dropdown and choose what content to show in the gadget (graph, table, or both).
Note
If a different name is entered in the Report Name field, a new, separate report will be saved. The new name will also be used as gadget label.
Repeat the previous steps using Firewall B, Core Router B, and Switch B, and export the report to Dashboard B.
Set up the report folders for each group:
Report folder configuration
Navigate to Admin > Classic Admin > Reports > Report Folders.
Click the New Folder button and enter a name for Group A’s folder (e.g., Report Folder A).
Add the report that was created for Group A to the folder by selecting it and clicking the <- Add button.
Repeat the steps to create the folder for Group B and add their report to it.
Create a map for each group’s network:
Network map configuration
Navigate to Monitor > Network Maps and create a new spatial map for Group A (e.g. Map A).
Assign Firewall A, Core Router A, and Switch A as map objects.
Link the devices as necessary using connections.
Repeat the steps to create the map for Group B.
Hint
The report previously created for Group A (or any other saved report) can be used to create a connection representing that traffic type between devices. These reports can also be added to dashboards for up-to-the minute display of the traffic covered.
Set up the user groups:
User group configuration
Navigate to Admin > Users and Groups > User Groups and click the + button to create a new group.
In the tray, enter a name (e.g., Group A Users) and select Guest as the starting template from the dropdown.
After the user group has been created, locate it in the main table and click the links under the columns to make the following changes:
Devices: Select only Firewall A, Core Router A, and Switch A.
Interfaces: Select only interfaces that should be visible to Group A (all interfaces associated with their devices, in most cases)
Reports: Select all reports and report folders created for Group A.
Dashboard Gadgets: Select only gadgets (based on saved report names) that were created for Group A.
Repeat the steps to set up the usergroup for Group B.
Navigate to Admin > Users and Groups > User Accounts and click the + button to create login credentials for one or more users for each group. Use the dropdown in the tray to add each user to the appropriate user group.
Hint
Users obtained from LDAP or another identity provider can also be added to user groups.
After everything has been set up, users from each group will only have access to the devices/interfaces, reports, and dashboards/gadgets belonging to their group.