You can take remediation measures on user accounts that may pose a security risk to your network environment on the Trend Micro Vision One console.
Zero Trust Secure Access: Go to the User Information screen.
Zero Trust Risk Insights: Go to the User Profile screen.
The Disable User Account Task screen appears.
This step is required only when the Azure AD data source permissions in the Zero Trust Risk Insights app are not enabled. For more information, see the Azure AD data source in Configuring the Data Source for Risk Analysis.
Granting these permissions automatically enables the data upload permission and policy enforcement permission of the Azure AD data source.
Trend Micro Vision One creates the task and displays the current action status on the Access Control History screen.
The Remediation Logs tab on the Access Control History screen appears.
You can also go directly to Access Control History > Remediation Logs, and locate the task using the search field.
In progress... (): Trend Micro Vision One sent the command to the enforcement point and is waiting for a response
Successful (): The enforcement point successfully received and executed the command
Unsuccessful (): An error or time-out occurred when attempting to send the command to the enforcement point
The task status indicates whether the enforcement point was able to successfully receive and execute the command. It may take a few minutes for the process to complete.
After resolving the risk issues on the disabled user account, you can enable the user account using the options icon () in the Zero Trust Secure Access or Zero Trust Risk Insights app.
For more information, see Enable User Account Task.