• Welcome to Support Forum: Get Support for Patch My PC Products and Services.
 

Advanced Insights - Threat Analytics

Started by Rmarti, August 13, 2024, 08:43:39 AM

Previous topic - Next topic

Rmarti

Hi All,
First, I apologize if this isn't the right forum to post this question to. I wasn't finding anything in the forum or KBs related to this issue.

My org is currently on the trial phase and are testing out the features of Advanced insights at the moment.

The Threat Analytics page does not seem to be loading any content (see screenshot).
I'm not sure where to start with troubleshooting on our end:

Is this feature available during the trial phase?
Are there any firewall rules that need to be in place?
Not seeing anything in the AdvancedInsightsApi.log relevant to the issue.

We are on Advanced Insights 2.3.2

Thanks for any and all insights into this issue!


Raunak Desai (Patch My PC)

Hey Rmatri,

Thank you for reaching out.

I would suggest you to please raise a support case with us as this would require more detailed troubleshooting.

Just to ensure, did you whitelist the recommended addresses?

To build the Threat Analytics dashboard we import some data from external APIs. Please check with your network team and ensure these addresses are not blocked.

https://docs.patchmypc.com/installation-guides/advanced-insights-and-patch-insights/requirements/network-requirements

Regards,
Raunak

Rmarti

Thank you for the reply!
I must've missed that piece in the KB.
This is probably our issue. Let me reach out to our security team to address, and if issues persist, we'll open a support case as you've recommended.

Thanks!

Raunak Desai (Patch My PC)


SeanM

I'm also having this issue. I don't see anything being blocked by my FWs and when running packet captures from my Site Server (where AdvancedInsights is installed), I don't see any traffic attempting to the destinations listed in the previously posted requirements doc. I expected that clicking the "Refresh Data" option on the errored panels would prompt attempts to the external endpoints but it doesn't seem to do that.