The List Threat Events and Initiate Malware Scan capabilities can be triggered from Run Additional Actions.
Before you begin
Role required: sn_si.admin
About this task
You can configure and trigger additional actions in the McAfee ePO integration enables by using Run Additional Actions on Endpoint, which include the McAfee ePO List Threat Events and McAfee ePO Initiate Malware Scan capabilities.
Procedure
-
Navigate to .
-
Select the security incident on which you want to run the additional actions.
-
In the Related Links section, select Run Additional Action(s) on Endpoint.
-
Browse and select the capability implementation that you want to trigger from the list of additional actions.
For example, McAfee ePO List Threat Events.
-
Select Include Related CI to run this additional action on all the related CIs of the profile.
For example, if there are five CIs associated with the security incident, then the selected profile runs on all the five CIs.
-
Select Run Additional Actions.
-
View and validate the McAfee ePO Threat Event Details on the related lists.