Review information about deploying endpoint agents and sensors using system templates such as a golden image.
Important
|
Trend Vision One Endpoint
Security supports deploying agents and sensors using VDI templates, golden images,
or custom
image templates (Azure). The Endpoint Security app automatically detects the endpoint
when a user
signs in and adds the desktop to the Endpoint Inventory list. You can download the
Image Setup
Tool from Endpoint Inventory to help configure the golden image or template for the
following
supported scenarios:
-
Physical desktops configured using a golden image
-
Persistent virtual desktops
-
Non-persistent virtual desktops
The Image Setup Tool is an accurate and efficient tool designed specifically to configure
the
agent settings for your golden image. Trend Micro
recommends using the Image Setup Tool to avoid errors in deployment regardless of
the deployment
type. Non-persistent virtual desktops must use the Image Setup Tool to configure the
virtual
desktop image template.
Feature support for persistent and non-persistent virtual desktops is different from
physical
endpoints. Refer to the following table for more information.
Feature Support
Feature
|
Persistent
|
Non-persistent
|
|
Sensor agent upgrade (in-place)
|
Supported
|
Not supported
|
|
Sensor agent upgrade (template)
|
Supported
|
Supported
|
|
|
|||
Standard Endpoint Protection
|
Supported
|
Supported
|
|
Server & Workload Protection
|
Supported
|
Supported
|
|
Vulnerability Assessment
|
Supported
|
Not supported
|
|
Zero Trust Secure Access
|
Supported
|
Supported
|
Endpoint Security offers separate settings for physical/persistent
desktops and non-persistent desktops. Virtual desktops which are not turned on regularly
are
automatically removed based on the agent settings. The time interval is set separately
for
persistent and non-persistent desktops. For information regarding inactive agent removal,
see the
following topics:
-
Global Settings. Global Settings only affects Sensor Only deployments.
-
Standard Endpoint Protection inactive agent removal. Inactive agent removal is managed separately by each Endpoint Group Manager.
Trend Micro has tested virtual desktop deployment
in the following environments, and only offers support for the listed platforms.
Tested Environments
Provider
|
Supported Platforms
|
VMware
|
|
Microsoft
|
|
Citrix
|
|
TipTrend Vision One supports multi-session VDI solutions. Trend Vision One does not change
or
limit the functionality of your virtual desktop operating systems. The Endpoint Security
VDI
solution works by creating unique device IDs for each virtual desktop after provisioning.
|