This is awesome and will be very useful to dig into things … I like having everything all in one place (even if takes a while to load it all lol). Thanks!

I just tried to upload this to a tenant running R120.1 and the process threw the following error:
 

Hi @hjw ! This usually happens when the device data collection is not enabled for your tenant. To confirm this, you can expand the data collection list in the “Explore” page and see if “Device” shows up. Let me know if it’s not there and I can help you enable that.

This dashboard shows an inaccurate count of Total users. We only have around 400 employees but showing over 3,000 Total users on this dashboard. Looking at the data its showing random users, like “ojqaymqsr_kuphl8mg9zta” and many non-employees (external to our domain).

Hi ​@nduda . Thanks for pointing this out.

The random user names are audit log data provided by the corresponding SaaS apps. To avoid this inaccurate/noisy data, you can set the “user” filter to “contains/ends with eyour company domain].” This will filter out random and external user names in the dashboard. 

The dashboard attached above has been updated with the “user” filter. Feel free to try it out and let us know if you have any other questions.

Thanks ​@Aaron_Zhang - Any issue if I add in a filter that filters out “Fallback Action” from alerts? That accounts for most of our alerts and it’s really not an “alert”

​@nduda No problem! You can definitely add an “Alert Name” filter, or any other filters based on your use cases, to filter out “Fallback Action” from the alerts in your environment.

While adding a new filter to the dashboard, please select “Advanced” in the control panel. This will allow you to set the filter to “is not Fallback Action.”

Hi ​@Aaron_Zhang,
Any health check report/dashboard can be generated for ZTNA Next as well?
It seems mainly focus on CASB/NGSWG solution only.

Hi ​@AllenWu ,

Thanks for the feedback!

Currently, there is not a pre-defined health check dashboard specifically for ZTNA Next since Advanced Analytics does not provide very thorough visibility into this topic.

If you are looking for particular metrics to monitor ZTNA security posture, feel free to reach out to your Netskope account representatives. Our team can help you customize a dashboard if the metrics are available.

Best,

Aaron

Senior Data Analyst - Analytics Strategy

Hi Aaron,

Yes, we also found that the attributes and prebuilt dashboards for ZTNA are limited.
We would like to rely on your expertise to understand which metrics Netskope recommends monitoring for a better functional health check.

Thanks.

Hi ​@AllenWu ,

As ZTNA creates a security & access framework that connects users with enterprise resources, private app usage is the one of the top used & recommended metrics for ZTNA security health check. The Private Application Overview Dashboard in Advanced Analytics > Netskope Library provides great visibility into this topic, including:

• Private app usage overview that helps you gauge how heavily ZTNA is being used in your organization
• Data center locations that helps you identify ZTNA usage in unexpected regions
• Policy info that helps you monitor policy violations
• Usage trend that helps you uncover anomalous usage

This is also the only pre-defined dashboard about ZTNA health check currently. If you are looking for additional metrics or data, please feel free to share it in our IDEA board or reach our to your Netskope account representatives to initiate the feature request process.

Please let me know if you have any other questions!

Best,

Aaron