Views:

Review the endpoint protection features based on operating system platform and Trend Vision One Endpoint Security solution.

Important
Important
  • Endpoint security policies (unified assignment) only support endpoints with the Trend Vision One Endpoint Security agent version 202507 release or later installed.
  • Endpoint Security Policies (unified assignment) is a "Pre-release" feature and is not considered an official release. Please review the Pre-Release Disclaimer before using the feature.
  • Endpoint Security Policies (unified assignment) is not available in all regions.
The Trend Vision One Endpoint Security agent provides many endpoint protection features to secure your environment. The features supported depend on your deployment configuration and if you enroll your endpoint groups in Endpoint Security Policies. Updating your agents to the latest version ensures you have access to the greatest support for Trend Vision One Endpoint Security features.
Feature support differs depending on how you manage your agent policies:
  • Manage agent policies using the Protection Managers
  • Manage agent policies using the Endpoint Security policies (unified assignment)
If you manage your agent policies using the Protection Managers, refer to the following table for a list of supported features by platform.
Important
Important
  • The Server & Workload Protection support tables include platforms not supported by the Trend Vision One Endpoint Security agent due to end-of-life or end-of-support status. Limited protection might be available for directly connected Deep Security agents. Trend Micro recommends keeping your platforms and endpoint agents updated to maximize security protection and reduce vulnerabilities.
    For information on which platforms the Trend Vision One Endpoint Security agent with Server & Workload Protection supports, see Server & Workload Protection system requirements.
  • For information on which platforms the Trend Vision One Endpoint Security agent with Standard Endpoint Protection supports, see Standard Endpoint Protection system requirements.
  • For information on which platforms the Trend Vision One Endpoint Security agent supports for Sensor-only deployments, see Endpoint Sensor-only system requirements.

Feature support for policies managed by Protection Managers

Platform
Sensor-only
Standard Endpoint Protection
Server & Workload Protection
Windows
  • Endpoint Sensor
  • Monitoring level
  • Deepfake detector
  • Data Detection and Response
  • Browser extension
  • Advanced risk telemetry
  • Agent console
The Trend Vision One Endpoint Security agent supports all features managed by policy settings in Standard Endpoint Protection.
See Apex One Security Agent Policies.
The Trend Vision One Endpoint Security agent supports all features managed by policy settings in Server & Workload Protection.
See Supported features by Windows version.
Linux
  • Endpoint Sensor
  • Data Detection and Response
  • Advanced risk telemetry
The Trend Vision One Endpoint Security agent does not support deploying Standard Endpoint Protection features to Linux.
The Trend Vision One Endpoint Security agent supports all features managed by policy settings in Server & Workload Protection.
See Supported features by Linux platform.
macOS
  • Endpoint Sensor
  • Data Detection and Response
The Trend Vision One Endpoint Security agent supports all features managed by policy settings in Standard Endpoint Protection.
See Apex One (Mac) Policy Settings.
The Trend Vision One Endpoint Security agent does not support deploying Server & Workload Protection features to macOS.
The following table maps which Protection Manager features are controlled and supported by features in Endpoint Security Policies (unified assignment). For a comparison of platform support based on agent configuration, see Endpoint Security Policy feature support requirements.

Feature support mapping for Endpoint Security Policies (unified assignment)

Feature name in policies
Standard Endpoint Protection for Windows feature name
Standard Endpoint Protection for macOS feature name
Server & Workload Protection feature name
Endpoint Sensor feature
Anti-Malware
  • Anti-Malware scans
    • Real-time Scan
    • Scheduled Scan
    • Manual Scan
    • Scan Now
  • Behavior Monitoring
  • Predictive Machine Learning
  • Suspicious Connection
  • Anti-Malware scans
    • Real-time Scan
    • Scheduled Scan
    • Manual Scan
  • Predictive Machine Learning
  • Scan Exclusions
  • Anti-Malware scans
    • Real-time Scan
    • Scheduled Scan
    • Manual Scan
  • Behavior Monitoring
  • Predictive Machine Learning
  • Spyware/Grayware
  • Process Memory Scan
-
Web Reputation
Web Reputation
Web Reputation
Web Reputation
-
Intrusion Prevention
Vulnerability Protection
-
Intrusion Prevention
-
Application Control
Application Control
-
Application Control
-
Device Control
Device Control
Device Control
Device Control
-
Firewall
Firewall
-
Firewall
-
Advanced Risk Telemetry
-
-
-
Advanced Risk Telemetry
Endpoint Sensor
-
-
-
Formerly Endpoint detection & response
Data Security Sensor
-
-
-
Formerly Data detection & response
Sandbox Submission
Sandbox Submission
-
-
-
Exclusions
Exception Lists
Trusted Program List
  • Rule Exceptions
  • Process image list
Exclusions
Browser Extension
-
-
-
Browser extension
Agent Interface
-
-
-
Formerly Agent Console