-
Last Updated: 05/27/2026
One of the first things you will need to do is to add users, typically the analysts in your security operations center and grant them the permissions they need to do their job. To add a new user: You can add users from the User Management pa...
-
MD uses the Announcements page to communicate important information to your team. These communications include standard announcements, blog posts, Intel, and highlights related to current threats or attacks. Only Mandiant MD users with Team Adm...
-
The following definitions are specific to the Managed Defense (MD) topics in this documentation portal. Term Description Supported Technology Products or subscriptions supported by MD Security Event(s) An observable occurrenc...
-
The Summary Reports display all report types generated for your organization. In the MD Portal, select Summary Reports from the Resources menu to go to the Reports page. The Reports page contains created Report Definitions on the left s...
-
The specifications in the following table are necessary for the installation of each Protected Theater. Protected Actor Minimum System Requirements are separate and must be considered when configuring the disk (Gold) image requirements.
T...
-
Last Updated: 05/21/2026
in Managed Services
The Portal can be integrated with other identity providers for authentication. There are two main types of federation: identity provider (IdP) initiated and service provider (SP) initiated. The Portal supports IdP initiated sign in.
An in...
-
A Notification Profile is how you link Monitors or Monitor Groups to a specific Notification Format and how you define the notification interval. A Notification Profile is also required to receive automatic notifications if a Job for a Monitor err...
-
The Notification Format defines how you want the platform to notify you when an alert is generated by Monitor Actions or when a Monitor errors.
There are three types of notification formats available:
Email : Sends the notifi...
-
You can group Monitors together into a Monitor group, which helps you to organize and administer Monitors. For example, you can create a Monitor group that is built for a particular use case (e.g., DLP) or that delineates responsibility (e.g., Net...
-
The AEDA Configuration page may contain a Disconnected Monitors section. This section is only displayed if a Sequence or Evaluation that is used in a Monitor has been edited and if some monitors are disconnected. The Disconnected Monitor s...