Home
Vantage
Learn how Vantage uses the power and simplicity of SaaS to deliver unmatched security and visibility across your OT, IoT and IT networks.
User Guide
Information about the main features of Vantage and the tasks that you can do from the user interface (UI).
Sensors
The Sensors page lets you view all of the sensors that you have in your system.
Connect a sensor
Add a sensor
Before you can use a sensor in Vantage, you must add it.
Add an Arc sensor
Before you can use an Arc sensor in Vantage, you must add it.

Vantage
Learn how Vantage uses the power and simplicity of SaaS to deliver unmatched security and visibility across your OT, IoT and IT networks.
- Introduction
  An overview of Vantage.
- Administrator Guide
  Information about the Administration section of Vantage, and the tasks that you can do in this part of the software.
- User Guide
  Information about the main features of Vantage and the tasks that you can do from the user interface (UI).
  - Sensors
    The Sensors page lets you view all of the sensors that you have in your system.
    - Details page
      The details page shows a set of fields which are applicable to the related type of sensor.
    - Summary drawer
      When you double-click a sensor in the table, the summary drawer shows. This lets you post a comment, or open the related details page.
    - Table interactions
    - Connect a sensor
      - Identify and copy the sensor ID
        Before you can add a sensor to Vantage, you must first identify the sensor, and copy the ID for use in other the procedures that follow.
      - Add a sensor
        Before you can use a sensor in Vantage, you must add it.
        Add an N2OS sensor
        Before you can use an N2OS sensor in Vantage, you must add it.
        Add an Arc sensor
        Before you can use an Arc sensor in Vantage, you must add it.
        Add a Guardian Air sensor
        Before you can use a Guardian Air sensor in Vantage, you must add it.
      - Configure a sensor
        After you have added a sensor, you must configure it before you can complete the connection of the sensor.
      - Arc sensor configuration
        A description of the configuration settings for an Arc sensor.
      - Complete the connection of a sensor
        After you have configured a sensor, you must complete the connection of the sensor.
      - Verify the connection of a sensor
        After you have completed the connection of a sensor, you must verify the connection of the sensor.
      - Reset a sensor token
        If you lose a sensor's token, it is possible to reset it.
    - Troubleshooting
  - Alerts
    The Alerts page displays system-generated notifications about potential issues.
  - Assets
    The Assets page shows all the physical components and systems that Vantage has detected through your sensors. Composed of one or more nodes, assets are the fundamental resources that Vantage protects.
  - Wireless
    The Wireless page lets you buy and connect a Guardian Air sensor. Once you have connected one or more Guardian Air sensor, the Wireless page show the connected Guardian Air sensors.
  - Queries
    The Queries page lets you write queries for your system. You can also save queries and assertions to be used again.
  - Vulnerabilities
    The Vulnerabilities page shows a list of all the vulnerabilities that Vantage has detected in your system. Vulnerabilities are weaknesses that reduce the security of your system and give threat actors an opportunity to exploit your system.
  - Vantage IQ
    Vantage IQ helps you navigate and explore your network. You can use smart query commands to leverage advanced machine learning and data analytic algorithms to dive deeper into your data.
  - Network
    The Network page shows a visual representation of your network and all its assets.
  - Graph
    The Graph page shows a visual representation of your network and all its assets.
  - Process
    The Process page shows a list of processes in your environment. Processes are a set of repeatable functions that a business does to deliver a core value.
  - Dashboards
    The Dashboards page shows a list of all the dashboards that have been created.
  - Reports
    The Reports page shows all the reports that the sensors in your system have created.
  - Sites
    The Sites page shows all the geographical locations of the assets in your system. It lets you associate a site to one or more network domains. You can also add details such as the country or city of the site.
  - Workbooks
    The Workbooks page shows recommended courses of action that can improve your network security. Generated through machine learning, workbooks highlight the vulnerabilities currently creating the highest risk exposure.
  - Threat Intelligence
    The Threat Intelligence page shows an overview of all of the available threat cards and categories. It also lets you filter the threat cards to show only malware, threat actors, or vulnerabilities
  - Asset Risk
    The Asset Risk page provides an in-depth view of asset risk levels. This includes an overview, detailed analysis, and benchmark comparisons to help assess and manage risks effectively.
  - Async operations
    The Async operations page lets you keep track of tasks that are being executed in the background, and it shows their outcome once that they are completed.
  - What's new drawer
    The What's new drawer shows a list of new features, enhancements, and fixes for issues.
  - Administration
  - Profile settings
    The profile settings menu lets you edit your user settings and update your profile.
  - Organizations menu
    The organizations menu shows a list of all of your organizations, and lets you switch between them. Vantage provides a default organization, but administrators can add more organizations as necessary.
- Print format documentation
  A list of all the print-format documentation that is available for Vantage.

Add an Arc sensor

Before you can use an Arc sensor in Vantage, you must add it.

Before you begin

Do the Add a sensor procedure and choose the Arc option.

Procedure

Select Configure Arc bundle.
A dialog shows.
Do a check of the defaults settings.
Select an option:
- To accept the default settings, close the dialog and go to step 9
- Alternatively, to modify the settings, go to step 4
In the Execution time section, enter a value in seconds.

Note:
When this is set to 0, the execution time is interpreted as infinite.
Enable/disable from these options:
- Sigma rules (Windows only)
- YARA rules (Windows only)
- USB detections (Windows only)
- Node points
- Discovery
- Smart Polling
- Local ARP table
From the Log level dropdown, select the verbosity level for the log files. Select from:
- Debug
- Info
- Warning
- Error
If necessary, in the Traffic monitoring section, select from:
- Enable
- Enable continuous mode
1. In the Monitoring time [s] per notification field, enter a value in seconds.
2. In the Max packets per notification field, enter a value.
3. In the Max used Memory [MB] field, enter a value.
Select Save.
Download the applicable bundle.
Before you continue, you must configure the sensor.