Views:

To activate your MDR app, do the following:

  1. Log in to your Trend Vision One console using an Administrator account.
  2. On the left pane, navigate to XDR Threat Investigation > Managed Services.
  3. On the pop-up window, click Get Started.

    Get Started

  4. Click Set up Now on the window that appears.

    Set up Now

  5. Set up your contact information:
    1. Click Add Contact, fill in the necessary information, and then click Submit.

      Add Contact

       
      Multiple contacts can be added, depending on your organization's needs and requirements.
    2. Click on Save to apply the changes.
  6. Configure the “Response Approval” section to define the actions that the MDR Team can take:

    Response Approval

    1. Tick the Enable auto approval checkbox.
    2. Under Available Actions, expand either Critical or Recommended and select the response actions:
      • For response actions that you want to be automatically approved, tick the box beside the response action.
      • For response actions that you want to be manually approved, untick the box beside the response action.
       
    3. Go to Notification Recipients and add the contacts (email address or mobile number) you want to be notified when the MDR team performs or requests these response actions.
       
      Mobile recipients should have the Trend Vision One Mobile app installed on their mobile phones to be able to receive notifications from the MDR team.
    4. Click Save to apply the changes.
  7. Some informational prompts may appear to show you other features of Trend Vision One. Click Manage Contacts and OK to close the prompts.
     
    Closing the prompts will not affect any of the MDR Settings and configuration.
  8. Under Managed Services, click on Cross-App Management and click on the first option. This will allow you to automatically close any related workbenches to any resolved MDR cases.

    Cross-App Management

After completing these steps, your Managed Services App is now activated.

For additional configuration for your MDR service, you may refer to the following KB Articles: