Enabling and disabling Threat Response actions

To enable or disable Threat Response actions of the Kaspersky Endpoint Agent application for reacting to threats detected by Kaspersky Sandbox:

  1. Open the Kaspersky Security Center Administration Console.
  2. In the console tree, select the Policies folder.
  3. Select the necessary policy and double-click it to open its properties.
  4. Under Kaspersky Sandbox integration, select Threat response.
  5. Under Actions:
    • Select the Take response actions on threats, detected by Kaspersky Sandbox check box if you want to enable Threat Response actions.
    • Clear the Take response actions on threats, detected by Kaspersky Sandbox check box if you want to disable Threat Response actions.
  6. In the upper right corner of the settings group, move the toggle switch from Unaffected by policy to Under policy.
  7. Click Apply and OK.

See also

Adding Threat Response actions to the action list of the current policy

Authentication for Threat Response group tasks at the Administration Server

Protection of workstations from legitimate applications that can be exploited by adversaries

Configuring the running of IOC scanning tasks

Page top