SentinelOne - Initiate Scan
- 16 Mar 2023
- 1 Minute to read
- Print
- DarkLight
- PDF
SentinelOne - Initiate Scan
- Updated on 16 Mar 2023
- 1 Minute to read
- Print
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
SentinelOne - Initiate Scan initiates a SentinelOne full scan on each of the assets (endpoints) that are the result of the query.
NOTE
To use the SentinelOne - Initiate Scan action, you must successfully configure a SentinelOne adapter connection.
See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.
Note:
- Not all asset categories are supported for all Enforcement Actions.
- See Actions supported for Activity Logs, Adapters Fetch History, and Asset Investigation modules.
- See Actions supported for Vulnerabilities.
- See Actions supported for Software.
General Settings
- Action name - The name of this Enforcement Action. The system sets a default name. You can change the name.
- Configure Dynamic Values - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.
To configure the Initiate SentinelOne Scan action, do as follows:
- From the Action Library, click Execute Endpoint Security Agent Action, and then click Initiate SentinelOne Scan.
- Define a unique action name.
- If you are using multi-nodes, choose the Axonius node to use to interact with the adapter when executing the enforcement action.
- Save the action.
For more details about other Enforcement Actions available, see Action Library.
Was this article helpful?