Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Defend Policy option added to sync windows anti-virus registration with Malware prevention #5128

Closed
2 tasks done
caitlinbetz opened this issue Apr 24, 2024 · 2 comments
Closed
2 tasks done
Assignees
Labels
Docset: ESS Issues that apply to docs in the Stack release Docset: Serverless Issues for Serverless Security enhancement New feature or request Team: EDR Workflows Formerly Defend Workflows, Onboarding and Lifecycle Management v8.14.0

Comments

@caitlinbetz
Copy link

caitlinbetz commented Apr 24, 2024

Description

We have added a new toggle in the "Register as antivirus" section of the Defend integration policy that automatically enables/disables registration if Malware prevention is disabled/enabled (benefit being, users don't need two AV products scanning for malware).

We are likely going to enable this by default in 8.15 as this is fairly common behavior across endpiont/AV solutions.

image
image

Related links / assets

Please include each of the following, if applicable:
Doc URL:
https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html#malware-protection
https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html#register-as-antivirus

Subject matter expert: @ferullo @caitlinbetz
Figma link(s):
Github epic link(s): https://github.com/elastic/security-team/issues/8687
Github issue link(s):

Which documentation set needs improvement?

ESS and serverless

Software version

8.14

Collaborators

PM: @caitlinbetz
Designer:
Developer: @ferullo @dasansol92
Others (if applicable):

Timeline / deliverables

8.14 release docs


Tasks

Preview Give feedback
@caitlinbetz caitlinbetz added enhancement New feature or request Team: EDR Workflows Formerly Defend Workflows, Onboarding and Lifecycle Management v8.14.0 labels Apr 24, 2024
@joepeeples joepeeples self-assigned this Apr 24, 2024
@ferullo
Copy link
Collaborator

ferullo commented Apr 25, 2024

Oops, @caitlinbetz meant @dasansol92 nit @dasa

@caitlinbetz
Copy link
Author

ahh thanks @ferullo

@joepeeples joepeeples added Docset: Serverless Issues for Serverless Security Docset: ESS Issues that apply to docs in the Stack release labels May 12, 2024
@joepeeples joepeeples changed the title [Enhancement]: Defend Policy option added to sync windows anti-virus registration with Malware prevention Defend Policy option added to sync windows anti-virus registration with Malware prevention May 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Docset: ESS Issues that apply to docs in the Stack release Docset: Serverless Issues for Serverless Security enhancement New feature or request Team: EDR Workflows Formerly Defend Workflows, Onboarding and Lifecycle Management v8.14.0
Projects
None yet
Development

No branches or pull requests

3 participants