Directly access an endpoint and execute CLI commands or a custom script file during an investigation.
Only users with the Master Administrator or Security Analyst roles can access the Remote Shell response.
The Remote Shell screen appears and Trend Micro Vision One attempts to connect to the endpoint.
Trend Micro Vision One only permits 10 concurrent remote shell sessions per company and does not permit multiple users from accessing the same endpoint concurrently. The target endpoint must be online in order to connect successfully.
If Trend Micro Vision One cannot establish a Remote Shell session within 5 minutes, the connection times out.
Use the Remote Shell console to execute the necessary commands for your investigation.
Type help at any time to view all the commands available.
The remote shell session automatically ends after 2 hours and automatically times out after 10 minutes of inactivity.
Click Use Custom Script to open the details panel and click Run next to the script file that you want to execute.
Trend Micro Vision One only permits you to execute 1 custom script file per session. The target endpoint must be online in order to connect successfully.
Terminating the connection may take a minute to complete. If you close the browser window before clicking End Session, the connection to the endpoint times out after 10 minutes.
In progress... (): Trend Micro Vision One sent the command to the managing server and is waiting for a response
Successful (): The managing server successfully received the command
Unsuccessful (): An error or time-out occurred when attempting to send the command to the managing server