1. In the main window of the Web Console, select Devices → Tasks.

   The list of tasks opens.

2. Click the IOC Scan task of Kaspersky Endpoint Security.

   The task properties window opens.

   If necessary, create the IOC Scan task.

3. Select the Application settings tab.
4. In the Action on IOC detection block, select the Take response actions after an IOC is found and Isolate computer from the network check boxes.
5. Save your changes.

As a result, when an IOC is detected, the application isolates the computer from the network to prevent the threat from spreading.

1. In the main window of the Web Console, select Devices → Managed devices.
2. Select the computer for which you want to configure local application settings.

   This opens the computer properties.

3. Select the Applications tab.
4. Click Kaspersky Endpoint Security for Windows.

   This opens the local application settings.

5. Select the Application settings tab.
6. Go to Detection and Response → Endpoint Detection and Response.
7. In the Network isolation block, click Isolate computer from the network.

1. In the main window of the Web Console, select Devices → Policies & Profiles.
2. Click the name of the Kaspersky Endpoint Security policy.

   The policy properties window opens.

3. Select the Application settings tab.
4. Go to Detection and Response → Endpoint Detection and Response.
5. In the Network isolation block, click Configure computer unlock settings.
6. This opens a window; in this window, select the Automatically unlock isolated computer in N hours check box and enter the delay for automatically turning off Network isolation.
7. Save your changes.

1. In the main window of the Web Console, select Devices → Managed devices.
2. Select the computer for which you want to configure local application settings.

   This opens the computer properties.

3. Select the Applications tab.
4. Click Kaspersky Endpoint Security for Windows.

   This opens the local application settings.

5. Select the Application settings tab.
6. Go to Detection and Response → Endpoint Detection and Response.
7. In the Network isolation block, click Unblock computer isolated from the network.

1. In the main window of the Web Console, select Devices → Policies & Profiles.
2. Click the name of the Kaspersky Endpoint Security policy.

   The policy properties window opens.

3. Select the Application settings tab.
4. Go to Detection and Response → Endpoint Detection and Response.
5. In the Network isolation exclusions block, click Exclusions.
6. This opens a window; in this window, click Add from profile and select standard network profiles for configuring exclusions.

   Network isolation exclusions from the profile are added to the list of Network isolation exclusions. You can view the properties of network connections. If necessary, you can modify network connection settings.

7. If necessary, add a Network isolation exclusion manually. To do so, in the window with the list of exclusions, click Add and manually edit network connection settings.
8. Save your changes.