Antivirus health status for Endpoint Prevention assets

Endpoint Prevention availability

Endpoint Prevention is available to Managed Detection and Response and Managed Threat Complete customers who also have the Next-Generation Antivirus or Ransomware Prevention add-ons.

The Agents table in your Agent Management experience indicates the Antivirus Health status of each Insight Agent you have deployed in your currently selected organization.

Antivirus Health statuses

The Antivirus Health indicator specifically tracks the status of the On-Access Scanning prevention engine attached to the prevention policy that each of your agents is subject to. There are four possible health statuses:

Good - The On-Access Scanning prevention engine is enabled running successfully.
Poor - The On-Access Scanning prevention engine is enabled and running, but the antivirus signatures are more than 7 days old.
Not Monitored - An Endpoint Prevention add-on is installed on this agent, but its prevention policy does not have the On-Access Scanning prevention engine enabled or the engine has encountered an internal error.
- If this status appears unexpectedly, verify that the On-Access Scanning prevention engine is enabled in your policy first before moving on to troubleshooting steps.
N/A - An Endpoint Prevention add-on is not installed due to an incompatible operating system. Check the requirements for antivirus eligibility details.
- Any Insight Agent installed on an operating system that's ineligible for an Endpoint Prevention add-on will have this status.

Did this page help you?

Manage

Endpoint Prevention glossary

Manage

Prevention groups