About Custom Dashboards

Symantec ICA
dashboard designers create dashboards using widgets to display custom content for specific users and roles. The additional dashboards can be based on the standard dashboards, or custom ones that are tailored to a user's needs. For example, security management can have a set of dashboards that have trending graphs for high risk and high asset events, and application owner information, based on region. The dashboards can then be displayed in a dashboard group with a tab for each region. Another dashboard set could be for members of the response team that has dashboards that show the events and findings based on a member's responsibilities.
Custom dashboards are created using the dashboard wizard. Each object on a dashboard is a widget. The widgets are grouped by function. The groups are layout, analyzer, query for charts, content, and system. The following widgets are available:
  • Layout: Vertical and horizontal layouts. At least one layout widget must be used in a dashboard, and it must be the first widget in the dashboard. More than one layout can be used in a dashboard.
  • Analyzer: A graph based on an analyzer view defined in the
    Symantec ICA
    analyzer. A chart must be defined in the view.
  • Chart: A chart widget includes a query that returns two columns, one for the axis data and one for the measure data. If the query returns more than two columns, then an error message is sent. The following chart types are available:
    • Area
    • Bar
    • Bubble
    • Column
    • Gauge
    • Gantt
    • Metric heat map
    • Line
    • Pie
    • Scatter plot
    When using the XML editor, the XML description includes the chart type, labels for the chart axis and measures, and a query.
  • Tile: Container for several metrics in one widget. Up to six metrics can be in a one-by-one tile.
  • Table: A standard table with columns and rows. When using the XML editor, the XML description includes the column, column labels, and a query.
  • Map: A map that shows source and destination locations.
  • Metric Indicator: The data trend for a metric. This widget does not include a query. Best practice is that no more than three metric indicator widgets be in one dashboard row.
  • External content: An area for presenting external content. This widget does not include a query.
  • Description: A text area. This widget does not include a query.
  • Separator: A one-line horizontal text field that can be used between widgets.
  • System: A system widget is a rank view, aging view, search or risk matrix widget.
    • Rank view: Shows how incidents rank compared to other incidents, such as High Severity Unusual on the Data in Motion dashboard.
    • Aging view: Shows incidents over time, such as the Status of DIM Events Requiring Remediation on the Data in Motion dashboard.
    • Search: Lists the public saved data-in-motion searches created in
      Symantec ICA
      . If a user has any private searches, then those searches also appear in the user's list.
    • Risk matrix: Shows the likeliest threats and their impact to your environment.