Trigger additional actions in McAfee ePO integration

  • 릴리스 버전: Australia
  • 업데이트 날짜 2026년 03월 12일
  • 소요 시간: 2분

    • The List Threat Events and Initiate Malware Scan capabilities can be triggered from Run Additional Actions.​

    시작하기 전에

    Role required: sn_si.admin

    이 태스크 정보

    You can configure and trigger additional actions in the McAfee ePO integration enables by using Run Additional Actions on Endpoint, which include the McAfee ePO List Threat Events and McAfee ePO Initiate Malware Scan capabilities.

    프로시저

    1. Navigate to Security Incidents > Show All Incidents.
    2. Select the security incident on which you want to run the additional actions.
    3. In the Related Links section, click Run Additional Action(s) on Endpoint.
    4. Browse and select the capability implementation that you want to trigger from the list of additional actions.
      For example, McAfee ePO List Threat Events.
    5. Select Include Related CI to run this additional action on all the related CIs of the profile.
      For example, if there are five CIs associated with the security incident, then the selected profile runs on all the five CIs.
    6. Click Run Additional Actions.
      그림 1. McAfee ePO Threat Event Details
      McAfee ePO Threat Event Details
      주:
      All the related list tables extend the base tables. In this example, the McAfee EPO Threat Event Details table is an extended table of the Additional Actions on Endpoint base table.
    7. View and validate the McAfee ePO Threat Event Details on the related lists.