Disabling Outbreak Prevention

When you are confident that an outbreak has been contained and that Apex One already cleaned or quarantined all infected files, restore network settings to normal by disabling Outbreak Prevention.

  1. Go to Agents > Outbreak Prevention.
  2. In the agent tree, click the root domain icon () to include all agents or select specific domains or agents.
  3. Click Restore Settings.
  4. To inform users that the outbreak is over, select Notify users after restoring the original settings.
  5. Accept or modify the default agent notification message.
  6. Click Restore Settings.

    If you do not restore network settings manually, Apex One automatically restores these settings after the number of hours specified in Automatically restore network settings to normal after __ hours on the Outbreak Prevention Settings screen. The default setting is 48 hours.

    Apex One records the following events in the system event logs:

    • Server events (initiating outbreak prevention and notifying Security Agents to enable outbreak prevention)

    • Security Agent event (enabling outbreak prevention)

  7. After disabling outbreak prevention, scan networked endpoints for security risks to ensure that the outbreak has been contained.