Computer and Agent status

The Status column of the Deep Security Manager's Computers page displays the computer and agent/appliance's current state. The column will usually display:

  • state of the computer's network connectivity
  • state (in parentheses) of the Agent or Appliance providing protection, if present
  • state of operations in progress, including any error states

The appliance is not available with Deep Security as a Service

The following tables list possible status and error messages.

In addition to the values below, the status column might also display System or Agent Events. For a list of the Events, see Agent event descriptions and System events.

Computer states

Computer State Description Notes
Discovered Computer has been added to the computers list via the discovery process.
Unmanaged The computer's agent is not managed by this Deep Security Manager because it hasn't been activated. Deep Security Manager can't communicate with the agent until you activate it.
Managed An Agent is present and activated, with no pending operations or errors.
Updating The Agent/Appliance is being updated with a combination of new configuration settings and security updates.
Update Pending (Schedule) The Agent/Appliance will be updated with a combination of new configuration settings and security updates once the computer's access schedule permits.
Update Pending (Heartbeat) An update will be performed at the next heartbeat.
Update Pending (Offline) The Deep Security Manager cannot currently communicate with the Agent/Appliance. An update is ready to be applied once the Agent/Appliance comes back online.
Scanning for Open Ports The Manager is scanning the Computer for open ports.
Activating The Manager is activating the Agent/Appliance.
Activating (Delayed) The activation of the Agent/Appliance is delayed by the amount of time specified in the relevant event-based task.
Activated The Agent/Appliance is activated.
Deactivating The Manager is deactivating the Agent/Appliance. This means that the Agent/Appliance is available for activation and management by another Deep Security Manager.
Deactivate Pending (Heartbeat) A deactivate instruction will be sent from the Manager during the next heartbeat.
Multiple Errors Multiple errors have occurred on this computer. See the computer's system events for details.
Multiple Warnings Multiple warnings are in effect on this computer. See the computer's system events for details.
Upgrading Agent The Agent software on this computer is in the process of being upgraded to a newer version.
Scanning for Recommendations A Recommendation Scan is underway.
Scan for Recommendations Pending (Schedule) A recommendation scan will be initiated once the computer's access schedule permits.
Scan for Recommendations Pending (Heartbeat) The Manager will initiate a recommendation scan at the next heartbeat.
Scan for Recommendations Pending (Offline) The Agent/Appliance is currently offline. The Manager will initiate a Recommendation Scan when communication is reestablished.
Integrity Scan Pending A command to start an integrity scan is queued to be sent.
Integrity Scan In Progress An Integrity Scan is currently in progress.
Integrity Scan Pending (Offline) The Agent/Appliance is currently offline. The Manager will initiate an Integrity Scan when communication is reestablished.
Baseline Rebuild Pending An instruction to rebuild a system baseline for Integrity Monitoring is queued to be sent.
Baseline Rebuild In Progress The Integrity Monitoring engine is currently rebuilding a system baseline.
Baseline Rebuild Pending (Offline) The Agent/Appliance is currently offline. The Integrity Monitoring engine will rebuild a system baseline when communication between the Manager and this computer is reestablished.
Checking Status The agent state is being checked.
Getting Events The Manager is retrieving Events from the Agent/Appliance.
Prepared The ESXi has been prepared for the installation of the Virtual Appliance. (The Filter Driver has been installed.) ESXi
Unprepared The ESXi has not been prepared for the installation of the Virtual Appliance. (The Filter Driver has not been installed.) ESXi
Filter Driver Offline The Filter Driver on the ESXi is offline. ESXi
Upgrade Recommended A newer version of the Agent or Appliance is available. An software upgrade is recommended.
Malware Manual Scan Pending The instruction to perform a manually-initiated Malware Scan has not yet been sent.
Malware Manual Scan Queued The instruction to perform a manually-initiated Malware Scan is queued.
Malware Manual Scan In Progress A manually-initiated Malware Scan is in progress.
Malware Manual Scan Paused A manually-initiated Malware Scan has been paused.
Malware Manual Scan Cancellation Pending The command to cancel a manually-initiated malware scan is queued to be sent.
Malware Manual Scan Cancellation In Progress The instruction to cancel a manually-initiated Malware Scan has been sent.
Malware Manual Scan Cancellation Pending (Offline) The Appliance is offline. The instruction to cancel a manually-initiated Malware Scan will be sent when communication is reestablished.
Malware Scheduled Scan Pending The command to cancel a scheduled malware scan has not yet been sent.
Malware Scheduled Scan Queued The instruction to cancel a scheduled Malware Scan is queued.
Malware Scheduled Scan In Progress A scheduled Malware Scan is in progress.
Malware Scheduled Scan Paused A scheduled Malware Scan has been paused.
Malware Scheduled Scan Cancellation Pending The instruction to cancel a scheduled Malware Scan is queued to be sent.
Malware Scheduled Scan Cancellation In Progress The instruction to cancel a scheduled Malware Scan has been sent.
Malware Scheduled Scan Cancellation Pending (Offline) The Agent/Appliance is offline. The instruction to cancel a scheduled Malware Scan will be sent when communication is reestablished.
Malware Manual Scan Pending (Offline) The Agent/Appliance is offline. The instruction to start a manually-initiated Malware Scan will be sent when communication is reestablished.
Malware Scheduled Scan Pending (Offline) The Agent/Appliance is offline. The instruction to start a scheduled Malware Scan will be sent when communication is reestablished.
Update of Anti-Malware Components Pending (Offline) The Agent/Appliance is offline. The Agent/Appliance will be updated with the latest Anti-Malware Components when communication is reestablished.
Update of Anti-Malware Components Pending (Heartbeat) The Agent/Appliance will be updated with the latest anti-malware components at the next heartbeat.
Update of Anti-Malware Components Pending (Schedule) Anti-malware components will be updated as soon as the computer's access schedule permits.
Update of Anti-Malware Components Pending The command to update anti-malware components is queued to be sent.
Update of Anti-Malware Components In Progress The Agent/Appliance is being updated with the latest Anti-Malware Components.
Unresolved software change limit reached Software changes detected on the file system exceeded the maximum amount. Application control will continue to enforce existing rules, but will not record any more changes, and it will stop displaying any of that computer's software changes. Resolve and prevent excessive software change.

Agent states

Agent State Description Notes
Activated The Agent/Appliance has been successfully activated and is ready to be managed by the Deep Security Manager.
Activation Required An unactivated Agent/Appliance has been detected on the target machine. It must be activated before it can be managed by the Deep Security Manager.
VM Stopped The virtual machine is in a "stopped" state.
VM Paused The virtual machine is in a "paused" state.
No Agent/Appliance No Agent/Appliance was detected on the computer.
Unknown No attempt has been made to determine whether an Agent/Appliance is present.
Deactivation Required The Manager has attempted to activate an Agent/Appliance that has already been activated by another Deep Security Manager. The original Deep Security Manager must deactivate the Agent/Appliance before it can be activated by the new Manager.
Reactivation Required The Agent/Appliance is installed and listening and is waiting to be reactivated a Deep Security Manager.
Online The Agent/Appliance is online and operating as expected.
Offline No contact has been made with the Agent for the number of heartbeats specified on the Computer or Policy editorYou can change these settings for a policy or for a specific computer. To change the settings for a policy, go to the Polices page and double-click the policy that you want to edit (or select the policy and click Details). To change the settings for a computer, go to the Computers page and double-click the computer that you want to edit (or select the computer and click Details). > Settings > General tab.

Computer errors

Error State Description Notes
Communication error General network error.
No route to computer. Typically the remote host cannot be reached because of an intervening firewall or if an intermediate router is down.
Unable to resolve hostname Unresolved socket address.
Activation required An instruction was sent to the Agent/Appliance when it was not yet activated.
Unable to communicate with Agent/Appliance Unable to communicate with Agent/Appliance.
Protocol Error

Communication failure at the IP, TCP, or HTTP layer.

For example, if the Deep Security Manager IP address is unreachable because the connection is being blocked by a firewall, router, or AWS security group, then it would cause a connection to fail. To resolve the error, verify that the activation port number is allowed and that a route exists.

Deactivation Required The Agent/Appliance is currently activated by another Deep Security Manager.
No Agent/Appliance No Agent/Appliance was detected on the target.
No valid software version Indicates that no installer can be found for the platform/version requested.
Send software failed There was an error in sending a binary package to the computer.
Internal error Internal error. Please contact your support provider.
Duplicate Computer Two computers in the Deep Security Manager's computers list share the same IP address.
VMware Tools Not Installed VMware Tools (with the VMware Endpoint Driver) is not installed on a guest Virtual Machine. The VMware Endpoint Driver is required to provide Deep Security Anti-Malware and Integrity Monitoring protection. This error status will only be displayed when Deep Security is deployed in a VMware NSX environment.

Protection module status

When you hover over a computer name on the Computers page, the Preview icon () is displayed. Click the icon to display the state of the computer's protection modules.

On/Off State:

State Description
On Module is configured in Deep Security Manager and is installed and operating on the Deep Security Agent.
Off Module is either not configured in Deep Security Manager, not installed and operating on the Deep Security Agent, or both.
Unknown Indicates an error with the protection modules.

Install state:

State Description
Not Installed The software package containing the module has been downloaded in Deep Security Manager, but the module has not been turned on in Deep Security Manager or installed on the Agent.
Installation Pending Module is configured in the Manager but is not installed on the Agent.
Installation in Progress Module is being installed on the Agent.
Installed Module is installed on the Agent. This state is only displayed when the On/Off state of the module is "Off". (If the On/Off state is "On", it means that the module has been installed on the Agent.)
Matching Module Plug-In Not Found The version of the software package containing the module imported into the Manager does not match the version reported by the Agent.
Not Supported/Update Not Supported A matching software package was found on the Agent, but it does not contain a module supported by the platform. "Not Supported" or "Update Not Supported" is displayed depending on whether there is already a version of this module installed on the Agent.