When ADRA NDR detects suspicious activities, it records the affected devices in Security Operations > Risk Management, and also takes action on the devices according to QNAP-defined and user-defined rules. You can use the list on this screen to regularly monitor devices that are at risk of attack, and manage the security of your network and IT infrastructure.

ADRA NDR also allows you to exclude specific devices from being monitored, and to identify specific ports to monitor.

To configure rules on how devices with suspicious activity should be automatically treated, see Protection Rules.