Introduction to Xcitium Enterprise - Endpoint Protection Platform
Xcitium Enterprise lets you manage, monitor and secure devices which connect to your enterprise network.
- Advanced Endpoint Protection (AEP) - Android, iOS, Mac OS, Windows and Linux.
- Endpoint Detection and Response (EDR) – Windows only
Xcitium Enterprise contains four main modules:
Endpoint Security - Protects your managed devices from all types of malware, including script based threats using Advanced Endpoint Protection (AEP). AEP contains a powerful antivirus that identifies even zero-day threats, containment technology that runs unknown executables in a sandbox environment an enterprise class packet filtering firewall and more. This requires a Xcitium communication client and Comodo Client - Security applications installed on protected devices.
Cloud Security - Xcitium's Cloud Native Application Protection Platform (CNAPP) is purpose built for securing cloud environments with formidable Zero Trust protection of cloud-native applications, the entire cloud infrastructure, and the full application and supply chain lifecycle, from code to cloud. Our holistic approach delivers Zero Trust runtime security from your endpoints all the way to your cloud workloads, and includes vulnerability scanning, threat detection, response, custom and automated policy recommendations and enforcements.
Endpoint Detection And Response (EDR) - A powerful event analysis tool that provides real-time monitoring and detection of malicious events on Windows endpoints. EDR allows you to visualize threats in a detailed timeline while instantaneous alerts keep you informed if an attack occurs. EDR requires an agent installed on protected devices to forward the detected malicious activities and alerts to Xcitium.
Managed Detection And Response
(MDR) - Shows threats and behavioral anomalies detected on your
network and managed endpoints. MDR uses a combination of technologies
deployed at the host and network layers, advanced analytics, threat
intelligence, and human expertise in incident investigation with
Comodo's 24/7 Security Operations Center (SOC) service.
-
See the dedicated online guide for MDR at https://help.comodo.com/topic-285-1-976-13887-Introduction-to-Comodo-cWatch-MDR.html for help to login to, configure and use the service.
This guide will take you through the configuration of AEP, Cloud, MDR and EDR.
Guide
Structure
Introduction to Xcitium Enterprise - Endpoint Protection Platform - High level overview of the service which introduces the features and concepts that are discussed later in the guide.
- Registry Scan
- CSPM Executive Dashboard
- Compliance Summary
- CWPP Dashboard
- App Behavior
- Manage Policies
- Remediation
- View Alerts
- Manage Triggers
- View Reports