Defend Policy option added to sync windows anti-virus registration with Malware prevention #5128
Closed
2 tasks done
Labels
Docset: ESS
Issues that apply to docs in the Stack release
Docset: Serverless
Issues for Serverless Security
enhancement
New feature or request
Team: EDR Workflows
Formerly Defend Workflows, Onboarding and Lifecycle Management
v8.14.0
Description
We have added a new toggle in the "Register as antivirus" section of the Defend integration policy that automatically enables/disables registration if Malware prevention is disabled/enabled (benefit being, users don't need two AV products scanning for malware).
We are likely going to enable this by default in 8.15 as this is fairly common behavior across endpiont/AV solutions.
Related links / assets
Please include each of the following, if applicable:
Doc URL:
https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html#malware-protection
https://www.elastic.co/guide/en/security/current/configure-endpoint-integration-policy.html#register-as-antivirus
Subject matter expert: @ferullo @caitlinbetz
Figma link(s):
Github epic link(s): https://github.com/elastic/security-team/issues/8687
Github issue link(s):
Which documentation set needs improvement?
ESS and serverless
Software version
8.14
Collaborators
PM: @caitlinbetz
Designer:
Developer: @ferullo @dasansol92
Others (if applicable):
Timeline / deliverables
8.14 release docs
Tasks
The text was updated successfully, but these errors were encountered: