Views:

Review what happens and what you should do when starting to use Endpoint Security Policies as an existing Trend Vision One customer.

Important
Important
  • A “Pre-release" feature is not considered an official release. Please review the Pre-release Disclaimer before using the feature. There is no additional charge for pre-release features before official release. We will notify you at least 30 days before official release or any upcoming charge. If you want to stop using one or more pre-release features, you can opt out at any time before official release from Platform Directory.
  • This feature is not available in all regions.
Endpoint Security Policies is designed to replace the General Sensor Settings in Endpoint Inventory with a policy-based method for configuring your Trend Vision One Endpoint Security agent. Upon provisioning Endpoint Security Policies, whether you opt-in to the pre-release preview or when the feature officially releases, the General Sensor Settings menu is removed from Endpoint Inventory. This replacement affects your settings and configurations, including Trend Vision One user role permissions.
Before starting to use Endpoint Security Policies, review the following features and configurations to ensure a smooth transition from using General Sensor Settings.
  • Review user role permissions. The permission settings for configuring default sensor settings and sensor policy have been moved and consolidated. Review your user roles to ensure your Trend Vision One users responsible for endpoint management still have access to view, create, and edit Endpoint Security Policies. The following table details the changes.

    Old permissions
    New permissions
    Endpoint SecurityEndpoint InventoryConfigure Default Sensor Settings
    • View Endpoint sensor detection and response default setting
    • View Advanced risk telemetry default setting
    • Configure Endpoint sensor detection and response default setting
    • Configure Advanced risk telemetry default setting
    Endpoint SecurityEndpoint Security ConfigurationEndpoint Security Policies
    • View
    • Configure Endpoint Security Policies
    • Override Endpoint Security Policies
    Endpoint SecurityEndpoint InventoryConfigure sensor policy
    • Configure Endpoint sensor detection and response
    • Configure Advanced risk telemetry
  • Review your current policies. When you provision Endpoint Security Policies, several general policies are created based on your configured Endpoint Inventory General Sensor Settings, along with the Default Endpoint Policy. Your endpoints are automatically assigned to the general policies. You can edit, delete, or rename the general policies.
    Important
    Important
    If you configured any endpoints to use settings different than the general sensor settings configuration, those endpoints automatically enable policy override and keep the applied settings.
    • For customers using the Trend Vision One Foundation Services release, the system creates the following policies.:
      • Standard Endpoint Protection General Policy
      • Server & Workload Protection General Policy
      • Sensor Only General Policy
      • Default Endpoint Policy
    • For customers using Trend Vision One Legacy, the system creates the following policies:
      • Endpoint Sensor General Policy
      • Default Endpoint Policy
  • Review the Network Content Inspection Engine feature. The first time you enable endpoint sensor detection and response, your currently deployed Trend Endpoint Agents install the new Network Content Inspection Engine. For more information, see Network Content Inspection Engine.