Real Time Monitoring with the Sophos UTM Manager | Sophos

Sophos UTM Manager

Centrally manage and monitor your UTM devices

Real time monitoring

Wherever a UTM is used, activity and information is gathered that administrators rely on. Rather than view and work with this data individually, our Sophos UTM Manager is the central point where you can see information on your connected installations.

View UTM activity from one console

  • System load
  • CPU load (total)
  • CPU load by core
  • RAM and Swap allocations
  • Hard drive allocations for all partitions
  • Network card load
  • HA/Cluster status

Learn more about UTM activity

Threats

  • Infringements of packet filter rules
  • IPS attacks, port scans, failed login attempts, virus and spyware attacks
  • Monitoring mail activity and see spam statistics

Services Overview

  • Display of activated and deactivated services
  • Monitoring of functions in the segments:
  • Network Security: SOCKS proxy, Intrusion Protection
  • Web Security: FTP and HTTP proxy
  • Mail Security: SMTP and POP3 proxy
  • NTP, DNS and DHCP servers
  • CPU load by service
  • RAM load by service

License Information

  • Active and maximum permitted number of users and connections
  • License status and license ID
  • Remaining period for each subscription

Manage your UTM inventory
Inventory management lets you review everything connected to the Sophos UTM Manager. Showing which types of devices are currently being managed, along with hardware specifications like number of processors and amount of memory, so you can keep track of exactly what’s in your security infrastructure.

Learn more about UTM inventory

You can also access a details page for each device, which provides an in-depth hardware profile about the components which make up the security appliance. Information like BIOS version, hard drive model and capacity, and information (including MAC address) of every installed network interface card.

Many tools exist for controller which devices are allowed to communicate to SCC either over a private VPN or the public Internet, and administrators can review the connected devices and choose to edit details and labeling for any of them, along with deleting/denying them access to the SUM. Scheduled operations allow tasks such as a scheduled reboot or firmware download/installation to happen at a convenient time.

Inventory Lists with Hardware Information for all Devices:

  • Device type
  • Processor
  • RAM
  • Hard drive
  • CD ROM
  • Network cards

^Back to top

Central Configuration

Control access to UTMs
The Sophos UTM Manager uses encrypted sessions so you can dive directly into a device’s WebAdmin without needing to login each time.

Learn more about UTM access

Working with lots of locations in a business is always challenging. The problems begin with basic tasks like logging into a specific site. The administrator needs to know what password to use and what address to login to. These types of operations cause extra management time and lead to shortcuts being made, like a single password being used for all locations or sensitive data being left in plain view on sticky notes or in unprotected documents. Connecting devices to Sophos UTM Manager is simple; just login to a SophosUTM, point it at the Sophos UTM Manager, then authorize it as being allowed. Using encrypted communications, the Sophos Sophos UTM Manager can then talk to the connected installation securely.

User Rights
Granular role assignment by customer, user and gateway:

  • No access
  • Monitoring: access to general overviews
  • Maintenance: access to the inventory overview as well as administration of routine tasks
  • Configuration: can perform configuration tasks
  • Reporting: can see and access reports and device information
  • UserAdmin: user rights administrator for selected devices

Directory Service Integration
Authentication of all SCC users via directory services:
eDirectory, Active Directory, RADIUS, TACACS+ and LDAP
Secure single sign-on (SSO) access to all devices (without additional login prompting)

Reporting

Daily, weekly, monthly and yearly overviews of:

  • Hardware and network capacity
  • Network security of Sophos UTM Manager
  • Automatic transmission of an executive report via email

Configure Site-to-Site VPNs
With Sophos UTM Manager creating a VPN tunnel between two or more sites doesn’t need you to log into each device. We make building VPN tunnels easy, even if dozens of devices need to be connected.

Learn more about VPN configuration

Central VPN Configuration

  • Build site-to-site IPSec VPN tunnels
  • Connect multiple sites together with one process
  • Wizard for tunnel creation
  • Edit/Delete deployed tunnels
  • Fully contained within ACC, no WebAdmin logins required.

Create Global Definitions
Avoid redundant tasks with Global Definitions. You can use to use the Sophos UTM Manager to centrally define objects and then push them out to your installations, putting objects directly in the target device inventory, ready to be used for building configuration.

Learn more about Global Definitions

If you have a central file server which ten installations access you do not have to define this file server object inside all 10 devices to build access rules around it. And if you ever need to change the parameters of this file server, you don’t need to go back and manually touch each device; just make the change to the object centrally. The Sophos UTM Manager will automatically ensure any updates or changes you make to Global Definitions are updated on the devices which they are deployed to.

If an object already exists locally on a specific installation, you can easily convert it to a global one simply by matching the parameters and choosing to substitute the existing local definition with its global counterpart during deployment. It’s even possible to share global definitions across separate companies managed by the same Sophos UTM Manager installation.

  • "Make once, use many" approach
  • Import definitions from your UTM 
  • Centrally manage and roll-out Network and Service Definitions
  • Automatic re-synchronization of deployed definitions when updated
  • Merge existing local definitions with their new central counterparts
  • Use "shared" Global Definitions on devices in separate Organizations

Set central web content filter rules
Working with a company policy on web use can be difficult when you have multiple sites or branches to maintain. With central management of Web Content filtering, you can make sweeping changes or selective adjustments anytime with no need for advanced planning or synchronizing separate management consoles.

Learn more about central web content filter rules

Rather than doing all the work by hand, Sophos UTM Manager offers you a much more efficient way to manage your web content filtering policy. Right in the UTM Manager, you can craft profiles with desired configuration settings and permissions. Once your policy is built, you can then push it out to one, all, or any combination of your company sites. We also make updating what you’ve deployed a breeze, simply edit the profile you want to make changes to, and adjustments can be instantly pushed out to the sites operating under that profile.

Forget scheduling or planning your changes by working with your locations one at a time, procedures which used to take hours or days to fully complete will literally take just seconds. Sophos UTM Manager makes it simple to build, deploy, and maintain web security settings for your entire company.

Set central packet filter rules
When faced with the task of building and maintaining firewall rules for multiple locations, administrators can often be overwhelmed by complex rule sets that need to be manually created and maintained at each site, and grow exponentially as more locations are added. For the average SMB to the enterprise company, there is a better and more effective way to work with your security rules.

Learn more about central packet filter rules

Sophos UTM Manager gives you the ability to build, deploy, and maintain firewall rules and rule sets from a central point. Now, ensuring your security settings are in synch has never been easier. Compliance efforts can also be affected if a rule is forgotten at one location or a you need to make changes to deal in response to new guidelines.

Rather than waste time trying to manually co-ordinate your firewall rules on each device, do it once in Sophos UTM Manager and simply push settings out to the desired locations. You also get the freedom to carefully craft and review your rulesets before deciding when and where to push them out.

Once you have deployed your rules, making revisions and changes is very easy. If you notice an error, your needs change, or you have to respond to a request from external factors like a compliance audit, adjustments can be made to the rule sets at any time. By removing the need to manually touch each location, the margin for error at individual sites is eliminated, and you retain all the control of what rules are in place at what locations; you just manage it more efficiently and easily by doing everything centrally.

Easily update and maintain UTMs
The Sophos UTM Manager lets you take central control over updating your security infrastructure. Using the same technology as our WebAdmin, you can see what firmware version your installations are running and update them all simultaneously.

Learn more about UTM updates

The Sophos UTM Manager gives you a configurable overview of every connected device. It can show you the versions of firmware and security patterns currently running at each site and you can use it to schedule and deploy updates to every site in the company without needing to manually manage this process at each location. Ensuring that a security device is at the latest version means you are protected against the latest threats and by having an easy system for updating all devices reduces the chance that you will fall behind on your protection.

Version Control

  • Installed firmware and pattern versions
  • Initiation of firmware and pattern updates
  • Prefetch control
  • Monitoring of the update process

^Back to top

Reporting

Get aggregated reports from your UTMs
Sophos UTM Manager has a central reporting engine which allows you to select and compile over 20 reports individually or combined across multiple installations. This can let you know things like the most-accessed site in a company for a month, or the total amount of bandwidth transferred by three locations so far this week.

Learn more about UTM reporting

For more information, all reporting output can be drilled into graphically for more details. In addition, you can make copies of the reports any time and send the report to a physical printer or PDF engine.

Filters are available so you can limit the displayed devices for reporting sources to a certain company, allowing for easy creation of reports per Organizational Unit. This is especially useful if Sophos UTM Manager is used to manage devices for separate companies, since administrators from each company can login and print their own reports anytime.

  • Generate reports of combined data from any desired number of devices
  • Print reports, drill-down to precise details, and use sorting and comparison features
  • Covers Accounting, Network Security, Web Security and Mail Security features
  • More than 20+ reports are available, with more being added
© 1997 - 2013 Sophos Ltd. All rights reserved. Legal Privacy Cookie Information