Enabling and disabling Threat Response actions for threats detected by Kaspersky Sandbox

To enable or disable Threat Response actions for threats detected by Kaspersky Sandbox:

1. Open the Kaspersky Security Center Administration Console.
2. In the console tree, select the Policies folder.
3. Select Kaspersky Endpoint Agent policy and open its properties window in one of the following ways:
   • Double-click the policy name.
   • Select Properties in the policy context menu.
   • Select the Configure policy settings item in the right part of the window.
4. In the Kaspersky Sandbox integration section select the Threat response subsection.
5. Under Actions:
   • Select the Take response actions on threats, detected by Kaspersky Sandbox check box to enable threat response actions.
   • Clear the Take response actions on threats, detected by Kaspersky Sandbox check box to disable threat response actions.
6. In the upper right corner of the settings group, change the switch from Unaffected by policy to Under policy.
7. Click Apply and OK.

Threat Response actions for threats detected by Kaspersky Sandbox are enabled or disabled.

See also Adding Threat Response actions to the action list of the current policy Authentication for Threat Response group tasks at the Administration Server Enabling detection of legitimate applications that can be used by cybercriminals Configuring the running of IOC scanning tasks

Page top