Endpoint Isolation
ThreatDefence offers active defence capabilities for all deployed Endpoint Agents, enabling you to swiftly respond to compromised accounts by isolating an endpoint from the network, leaving it only accessible to the ThreatDefence portal.
Prerequisites
- Onboarding ThreatDefence Endpoint Agents. Refer to the Endpoint Agent Guide for details for each platform.
Usage
- Access your ThreatDefence portal.
- Navigate to Assets > Endpoint Agents.
- Select your tenant, and review the list of hosts available.
- Use the Isolate Host or Release buttons to manage endpoint access.
Notes
- Endpoint isolation status may take up to 15 minutes to be reflected in the portal.