.png?fit=max&auto=format&n=tsMQJyneJ1xquFUo&q=85&s=4d401cc03b547d99b6f75a6bd170c334){kind=spacer}
The Devices page tracks all employee endpoints — laptops, desktops, and mobile devices — and monitors their security compliance status. Auditors need evidence that company devices meet baseline security requirements, and this module provides it.Documentation Index
Fetch the complete documentation index at: https://help.dsalta.com/llms.txt
Use this file to discover all available pages before exploring further.
What Devices is for
SOC 2 and ISO 27001 require you to demonstrate that employee devices are secured — encrypted hard drives, screen locks enabled, OS up to date, and security agents installed. The Devices module tracks all of this in real time, either through a device agent or MDM integration.How device data is collected
Devices are registered in two ways:- DSALTA Device Agent — Employees install a lightweight agent on their device through the employee portal. The agent reports device configuration data to DSALTA without collecting personal data or browsing history.
- MDM Integration — Connect an MDM platform (JumpCloud, Microsoft Intune, Google Endpoint Management) to pull device data automatically for all managed devices.
Viewing your devices
The device list is split into two sections: Monitored Devices — Devices actively tracked with security checks running. These produce compliance evidence on every check-in. Unmonitored Devices — Devices that have been registered but are not currently reporting data. This can happen if an employee removes the device agent, if the device has been offline for an extended period, or if MDM enrollment has lapsed. For each monitored device, DSALTA tracks:| Check | Description |
|---|---|
| Hard Drive Encryption | Whether disk encryption is enabled (BitLocker on Windows, FileVault on macOS) |
| Screen Lock | Whether automatic screen lock is configured with a reasonable timeout |
| OS Version | Current operating system version and whether it is up to date |
| Password Manager | Whether a password manager application is installed |
| Antivirus | Whether antivirus or endpoint protection software is active |
| Security Agent | Whether the DSALTA device agent is installed and reporting |
| Last Check-In | When the device last reported its status |
Working with devices
When a device check fails (e.g., encryption is not enabled), it appears as a failing status in the device list. The employee also sees the issue in their employee portal. To resolve a failing device check:- Identify the failing check in the device detail page.
- Contact the employee or use your MDM to push the required configuration.
- Once the employee’s device meets the requirement, the next check-in updates the status automatically.
Integrations that feed Devices
| Integration | What syncs |
|---|---|
| JumpCloud | Device inventory, OS version, encryption status |
| Microsoft Defender for Endpoint | Encryption, screen lock, OS update status |
| Microsoft Intune | Full device compliance status |
| Google Endpoint Management | Device enrollment and security settings |