Review what happens and what you should do when starting to use Endpoint Security Policies as an existing Trend Vision One customer.
Important
|
Endpoint Security Policies is designed to replace the General Sensor Settings in Endpoint
Inventory with a policy-based method for configuring your Trend Vision One Endpoint
Security agent. Upon provisioning Endpoint Security Policies, whether you opt-in to
the pre-release preview or when the feature officially releases, the General Sensor
Settings menu is removed from Endpoint Inventory. This replacement affects your settings
and configurations, including Trend Vision One user role permissions.
Before starting to use Endpoint Security Policies, review the following features and
configurations to ensure a smooth transition from using General Sensor Settings.
-
Review user role permissions. The permission settings for configuring default sensor settings and sensor policy have been moved and consolidated. Review your user roles to ensure your Trend Vision One users responsible for endpoint management still have access to view, create, and edit Endpoint Security Policies. The following table details the changes.Old permissionsNew permissions
-
View Endpoint sensor detection and response default setting
-
View Advanced risk telemetry default setting
-
Configure Endpoint sensor detection and response default setting
-
Configure Advanced risk telemetry default setting
-
View
-
Configure Endpoint Security Policies
-
Override Endpoint Security Policies
-
Configure Endpoint sensor detection and response
-
Configure Advanced risk telemetry
-
-
Review your current policies. When you provision Endpoint Security Policies, several general policies are created based on your configured Endpoint Inventory General Sensor Settings, along with the Default Endpoint Policy. Your endpoints are automatically assigned to the general policies. You can edit, delete, or rename the general policies.
Important
If you configured any endpoints to use settings different than the general sensor settings configuration, those endpoints automatically enable policy override and keep the applied settings.-
For customers using the Trend Vision One Foundation Services release, the system creates the following policies.:
-
Standard Endpoint Protection General Policy
-
Server & Workload Protection General Policy
-
Sensor Only General Policy
-
Default Endpoint Policy
-
-
For customers using Trend Vision One Legacy, the system creates the following policies:
-
Endpoint Sensor General Policy
-
Default Endpoint Policy
-
-
-
Review the Network Content Inspection Engine feature. The first time you enable endpoint sensor detection and response, your currently deployed Trend Endpoint Agents install the new Network Content Inspection Engine. For more information, see Network Content Inspection Engine.