Taegis Endpoint Agent Host Isolation Exceptions🔗

Use Host Isolation Exceptions to access Taegis™ XDR Endpoint Agents in an isolated state from an approved CIDR range. By default, endpoints in an isolated state are limited to agent-related traffic only; a CIDR exception rule allows additional network traffic to isolated endpoints within that range.

Note

Isolation Exceptions is only available for tenants with the Taegis Endpoint Agent.

To view Isolation Exceptions:

From the Taegis Menu, select Endpoint Agents → Isolation Exceptions.
The Isolation Exceptions table displays any exception rules currently configured.

Create a Rule🔗

To create a new Host Isolation Exception rule, follow these steps:

From the Taegis Menu, select Endpoint Agents → Isolation Exceptions.
Select Create Rule from above the table.
Complete the New Rule form with the following details:
- Name of Rule — Enter a name for the rule.
- Description — (Optional) Enter a description of the rule.
- Rule Type — From the dropdown menu choose CIDR, currently the only option.
- Rule Values — Enter one or more CIDR ranges for the endpoints you want to allow additional network traffic to flow to when isolated.
Select Save. Your exception rule is added to the table.

You can now test access to an isolated host in the specified range for any additional troubleshooting needs on the endpoint, such as forensics, management, or deployment.

Edit a Rule🔗

To edit a configured Host Isolation Exception rule, follow these steps:

From the Taegis Menu, select Endpoint Agents → Isolation Exceptions.
Select the desired Rule Name from the table. The Rule Details form displays.
Edit the rule as needed and select Update when complete.

Delete a Rule🔗

To delete a configured Host Isolation Exception rule, follow these steps:

From the Taegis Menu, select Endpoint Agents → Isolation Exceptions.
Select the desired Rule Name from the table. The Rule Details form displays.
Choose Delete Rule from the bottom of the form and confirm your action.