To access the OS Distribution chart, go to Monitoring > Threat Protection.

Click the chart to view drill-down information.


A screen capture of the OS distribution pie chart. The legend is directly above the chart. The Filters and Date Range sections are on the left side of the graph, and the monitored risk data table is below it.

The drill-down table shows more detailed information about each high-risk event, including:

  • IP address
  • Target application
  • IP reputation

Only events that have triggered a specific risk model, such as geovelocity anomaly, or have an aggregated risk score of high are shown. The aggregated risk score is determined by the selected risk policies in the Policy Name list.

Scroll to the right to see additional columns. For use of the filtered search bar, see Filtered searching.

For a description of the table columns, see Monitored risk data.

You can click a column header to sort the results by that value. Results are sorted by the Time column by default, with the most recent entries listed first.