Capture Client Protecting Assets with Security Policies for Unified Management

Technical Documentation> Scopes and Policies> Policy Management> Policy Types> Threat Protection Policies

Threat Protection Policies

Threat Protection policy is one of the security policies that Capture Client offers. To view the Threat Protection policies, navigate to Capture Client > Policies > Threat Protection.

All the settings in the Threat Protection Policies are controlled by SentinelOne. This page only allows to enable or disable Capture ATP Integration status.

Capture ATP Integration can be enabled if

Threat policy mode is set Detect or Protect in Capture Client.
Suspicions policy mode is set Detect explicitly on SentinelOne console.

Enabling the Capture ATP on Capture Client console, changes the suspicious mode to Detect on SentinelOne console.

Capture ATP Integration can go out-of-sync if

Suspicions policy mode is set Protect by SentinelOne.

We recommend keeping the Suspicious policy to Detect mode for Capture ATP to work.

< Prev Section

Next Section >

Capture Client Protecting Assets with Security Policies for Unified Management

Table of Contents

Threat Protection Policies