Add a License

Mandiant Advantage Security Validation (MA-SV) (Software-as-a-Service, or SaaS) and Mandiant Security Validation (MSV) (on-prem) require a valid license. Licensed features are listed separately, letting you quickly see what functionality is included in your subscription. If a feature isn't licensed, it generally means there is an extra cost to add it to your subscription. You can contact Support or your Account Manager for additional information about these features.

Licenses issued after January 1, 2022 require a persistent connection to the Mandiant Content Service. If a successful connection has not occurred for 15 days, the Director immediately halts running of Jobs. Once connection to the Content Service is restored and verified by the Director, you are able to run Jobs again. For more details on the Mandiant Content Service and its benefits, see The Mandiant Content Service.

Licensed Features

The default license as a base subscription includes one Director and five Actors. The following additional features can be licensed to your subscription:

  • Advanced Environmental Drift Analysis (AEDA): Lets you continuously test your environment and provides early alerts for defensive regressions
  • Actors: Lets you test network, endpoint, and email security controls
  • Captive IOC (Indicators of Compromise): Lets you safely evaluate your defensive performance related to blocking communication with publicly routable destination addresses for known Threat Actors
  • Cloud Validation Module: Lets you test your cloud security controls
  • Security Content: Lets you track and test files, applications, commands, network traffic samples, and other artifacts that can be malicious and/or represent real attacker behavior
  • Email Theater: Lets you run email-based tests
  • Endpoint: Supports the use of Endpoint Actors
  • Protected Theaters: Lets you safely run destructive endpoint tests
  • RDV Access (MA-SV only): Provides access to Ransomware Defense Validation (RDV), a low touch, safe, and continuous test of whether your security controls can prevent the latest ransomware
  • Remote Integrations: Lets you communicate with remote security controls over a network boundary through an integrated proxy function
  • Security Technology: Lets you identify and test security technologies in your environment
  • Threat Actor Assurance Module (TAAM): Lets you operationalize your commercial threat intelligence platform
  • Update Service: Lets you automatically update Security Validation components with software upgrades, patches, and hotfixes

There are two ways to apply the license:

  • In the web interface
  • Using the API

Apply in the web interface

  1. In a browser, navigate to the following URL:
    https://DIRECTOR_IP/

    Where DIRECTOR_IP is the IP address for your Director.

  2. Enter the default Director web interface credentials as noted in Validation Director Credentials. The Director automatically displays the End-User Licensing Agreement (EULA).
  3. Review the agreement and select I accept the agreement to acknowledge reading and accepting the provisions of the EULA and then click Submit. The Director automatically navigates to Settings > License and warns that the license is expired.End User License Agreement prompt, followed by the checked setting to accept the agreement.

    Validation Platform End User License Agreement


  4. Click Browse to locate and select the applicable license file, and click Upload. The Director uploads and verifies the license file.

    The Director ID and License expiration date appears in the License section. The Licensed Features table also populates, listing which features were included in the license. 

    License page with uploaded license, along with accompanying licensed features in a table.

Apply with the API

  1. Accept the pre-license upload End User License Agreement (EULA) using the following command.
    curl -X PUT --data 'customer_agreement(agreement)='--data 'customer_agreement[accepted]=1' --user 'USER@DOMAIN' -k https://172.16.3.101/customer_agreements/current_agreement

    Where USER@DOMAIN is a user account that has administrator privileges.

  2. Enter your host password.
  3. Upload the user license.
    curl -X POST -k https://172.16.3.101/license/verify_license -F 'license_file=@/home/nodeone/verodin_license_username_Internal.pkg ' --user 'user@domain' -L
  4. Enter your host password.
  5. Accept the post-license upload EULA.
    curl -X PUT --data 'customer_agreement[agreement]=' --data 'customer_agreement[accepted]=1' --user 'user@domain' -k https://172.16.3.101/customer_agreements/current_agreement

The Director ID and License expiration date appears in the License section of the Director web interface. The Licensed Features table also populates, listing which features were included in the license.

© Copyright Mandiant. All rights reserved
  • First Published: June 5, 2022
  • Last updated: June 22, 2023
In This Article
Related Articles
  • None
Copyright © 2020 – 2021 Your Company, LLC. All rights reserved.