Enable Endpoint Sensor by deploying the Apex One Security Agent policy, and then run the demonstration script to trigger detections in Trend Vision One.
Procedure
- Enable Endpoint Sensor on a connected Security
Agent.
- On the Apex Central as a Service console, open your Apex One Security Agent policy.
- Locate and expand the Endpoint Sensor policy section.
- Select Enable Endpoint Sensor.
- Click Deploy.Allow some time for the policy to deploy to the targeted Security Agents. After receiving the updated settings, Security Agents start to send activity data to Trend Micro.
- Run the desired simulations on the Windows endpoint.
- On the Trend Vision One console, click
Resource Center (
) in the bottom left
corner. - Click Simulations.
- Click Endpoint
Attack.The Endpoint Attack Simulations dialog appears.
- Click the right (
) and left (
) arrows to browse available
simulations. - Click Download Demo Script to download an archive file to the Windows endpoint.
- Extract the archive file on the Windows
endpoint.
Note
The archive file is password protected. The password is displayed on the Simulations dialog. - Run the
.batdemo script file on the Windows endpoint.The Windows Command Prompt opens. - Follow the instructions in the Windows Command Prompt window to execute the demonstration commands.
- After executing the commands, go to the Trend Vision One
console to view the expected results.
Note
Results might take a few minutes to appear.
- On the Trend Vision One console, click
Resource Center (