0
(0)

The criticality of a detection is partly based on the importance of the affected hosts.

F-Secure Elements Endpoint Detection and Response classifies hosts into the following groups automatically based on processes running on them:

  • Server
  • Domain Controller
  • Exchange Server
  • Non-technical
  • Sys Admin
  • Developer
  • Unknown (not enough data to determine the profile)

The incident risk score increases when an attack targets a host that has been classified as a server (server, domain controller or exchange server).

To manually change the importance of monitored hosts, follow these instructions:

    1. Go to the Devices view of the customer organization that you want to edit.

The Profile column shows how F-Secure Elements Endpoint Detection and Response has classified the host.

  1. Select hosts that you want to edit by selecting the appropriate checkboxes.
  2. Select Update importance.
  3. Select the new status for the selected hosts from the pull-down menu.
  4. Select Update.

Source : Official F-Secure Brand
Editor by : BEST Antivirus KBS Team

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

(Visited 5 times, 1 visits today)