Host Details Walkthrough
A tab-by-tab tour of the Host Details page. Every tab, every action button, what each does, and which permission gates it.
Opening Host Details
From the Hosts page, click any host name. The Host Details page renders a header (FQDN, status badge, action menu) plus a vertical tab strip. Tabs are conditional: third-party-repos shows only on supported package managers; child-hosts only when the host advertises a hypervisor; ubuntu-pro only on Ubuntu hosts where the agent detected Pro availability.
Action Menu (top-right)
Each action is permission-gated. Disabled items render greyed out; hover for the missing-permission tooltip.
| Action | What it does | Permission |
|---|---|---|
| Edit Hostname | Renames the host record on the server. The agent's local hostname is unaffected. | Edit Host Hostname |
| Edit Tags | Add / remove free-form tags used by Hosts list filters and fleet group dynamic criteria. | Edit Tags |
| Reboot Host | Sends the agent a reboot command. On Pro+ Professional tier hosts with running children, triggers safe-reboot orchestration (stop children, reboot, restart children). | Reboot Host |
| Shutdown Host | Sends the agent a poweroff command. | Shutdown Host |
| Update Agent | Triggers in-place upgrade of the agent .deb / .rpm / .pkg / .apk on the host. | Update Agent |
| Deploy SSH Key | Pushes a public key into the agent user's ~/.ssh/authorized_keys; lets server admins SSH into the host through whatever account the agent runs as. | Deploy SSH Key |
| Deploy Certificate | Reissues the host's mTLS client certificate (rotation). | Deploy Certificate |
| Run Script (one-shot) | Quick ad-hoc shell / PowerShell / batch run against this single host. For library / multi-host / scheduled runs see the Pro+ Automation Engine. | Run Script |
| Connect Host to Graylog | Pro+: attaches this host to a Graylog input (log forwarder sidecar). | Connect Host to Graylog |
| Deploy OpenTelemetry / Start / Stop / Restart OTEL | Pro+: per-host OTEL collector lifecycle. | Deploy OpenTelemetry (and Start/Stop/Restart variants) |
| Delete Host | Removes the host record + history from the server. The agent on the machine isn't touched (re-registers on next start unless uninstalled). | Delete Host |
Tab-by-Tab Reference
Info
Identity (FQDN, IPv4/IPv6, MAC), platform (OS name + version), agent version, registration / approval state, last-seen heartbeat, and parent-host link if this host is a child of another host.
Hardware
CPU model + cores + frequency, total memory, disk inventory (device, mount, size, free), network interfaces (name, MAC, IP, link state), GPU info where available. Snapshot from the agent's hardware-collection module; updates each time the host re-registers or runs update_inventory.
Software
Installed packages from every detected package manager (apt, dnf, yum, zypper, pkg, pkg_add, pkgin, apk, brew, snap, flatpak, choco, scoop, winget, MSI/registry). Search box filters by name; sort by name / version / manager / install date.
Software Changes
Audit trail of installs / upgrades / removals captured between consecutive software-inventory uploads. Useful for "what changed since last week" investigations.
Third-Party Repositories
Per-host third-party repo list (PPAs, third-party apt/yum/zypper repos, COPR, OBS, Flatpak remotes). Add / disable / enable / remove from this tab. See the dedicated guide for the full workflow.
Access
Local user accounts, groups, group memberships, and sudoers fragments. Read-only inventory in OSS edition; Pro+ tiers can add / remove user accounts via Add Host Account / Edit Host Account / Delete Host Account permissions.
Security
Firewall state (which firewall is active: ufw / firewalld / pf / npf / Windows Firewall / etc.) plus its current rule set. Antivirus state where applicable (commercial AV detected? sysmanage-managed AV deployed?). Per-host firewall role assignments (Pro+).
Compliance
Pro+: per-host compliance posture from the Compliance Engine — CIS-style benchmark results plus package-allowlist / blocklist matches. Pass / warn / fail counts and per-rule drilldown.
Certificates
SSL/TLS certificates discovered on the host (cert store + filesystem scan): issuer, subject, validity, expiry. Useful for cert-rotation tracking. The host's own mTLS client cert (used to authenticate to the SysManage server) is also shown here with its expiry.
Server Roles
Server-role detection: which application roles (web server, database, mail, DNS, file server, etc.) the agent fingerprinted on the host. Used by reports and fleet group dynamic-criteria filters.
Child Hosts
Visible only when the host advertises a hypervisor capability (KVM, bhyve, VMM, LXD, WSL). Each hypervisor renders a status card with capabilities + an Enable/Initialize button when not yet bootstrapped, and a Create button when ready. Child-host list shows per-row Start / Stop / Restart / Delete. See the Virtualization Engine guide (Enterprise tier) and Container Engine guide (Professional tier).
Ubuntu Pro
Visible only on Ubuntu hosts where the agent reports Ubuntu Pro is available. Attach / detach an Ubuntu Pro contract token; manage which Pro services (ESM, livepatch, FIPS, USG) are enabled on the host. Permissions: Attach Ubuntu Pro, Detach Ubuntu Pro, Change Ubuntu Pro Master Key.
Diagnostics
Run on-host diagnostics: connectivity (DNS, NTP, server reachability), agent log snapshot, queue backlog, last error. Output streams back to the host details page so you don't need shell access for routine checks.