Skip to main content

Endpoint Isolation

ThreatDefence offers active defence capabilities for all deployed Endpoint Agents, enabling you to swiftly respond to compromised accounts by isolating an endpoint from the network, leaving it only accessible to the ThreatDefence portal.

Prerequisites

Onboarding ThreatDefence Endpoint Agents. Refer to the Endpoint Agent Guide for details for each platform.

Usage

Access your ThreatDefence portal.
Navigate to Assets > Endpoint Agents.
Select your tenant, and review the list of hosts available.
Use the Isolate Host or Release buttons to manage endpoint access.

Notes

Endpoint isolation status may take up to 15 minutes to be reflected in the portal.