Kaspersky Managed Detection and Response

Using Kaspersky Endpoint Detection and Response Optimum features

February 12, 2024

ID 213367

The Kaspersky Endpoint Detection and Response Optimum solution provides the following response features (hereupon also referred to as EDR responses), which you can run and configure manually.

  • Network isolation
  • Move file to Quarantine
  • Send files to Cloud Sandbox
  • Delete file
  • Run Critical Areas Scan
  • IOC Scan
  • Execution prevention
  • Start a process
  • Terminate process
  • Get file

You can find more details about these EDR responses in Kaspersky Endpoint Detection and Response Optimum Online Help.

The EDR responses described in this section are available for assets with Kaspersky Endpoint Security for Windows 11.7 or later. If you use Kaspersky Endpoint Security for Windows 11.6 or an earlier version on your assets, Kaspersky Endpoint Agent must be installed on these assets in order to work with EDR responses.

To activate Kaspersky Endpoint Detection and Response Optimum functions, you must add one of the following license keys on your assets via Kaspersky Security Center:

  • Kaspersky Endpoint Detection and Response Optimum
  • Kaspersky Endpoint Detection and Response Optimum add-on

To manage EDR alert responses actions, in Kaspersky Security Center go to the Monitoring & ReportingAlerts section.

.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.