Enabling and disabling Threat Response actions

To enable or disable Threat Response actions of Kaspersky Endpoint Agent for reacting to threats detected by Kaspersky Sandbox:

1. Open Kaspersky Security Center Administration Console.
2. In the console tree, open the Policies folder.
3. Select Kaspersky Endpoint Agent policy and open its properties window in one of the following ways:
   • Double-click the policy name.
   • Select Properties in the policy context menu.
   • Select the Configure policy settings item in the right part of the window.
4. In the Kaspersky Sandbox integration section select the Threat Response subsection.
5. In the Actions group of settings:
   • Select the Take response actions on threats, detected by Kaspersky Sandbox check box to enable Threat Response actions.
   • Clear the Take response actions on threats, detected by Kaspersky Sandbox check box to disable Threat Response actions.
6. In the upper right corner of the settings group, change the switch from Policy not enforced to Under policy.
7. Click Apply and OK.

See also Adding Threat Response actions to the action list of the current policy Authentication for Threat Response group tasks on the Administration Server Device protection from legitimate applications that can be used by cybercriminals Configuring start of Autonomous IOC Scan tasks

Page top