Extended Endpoint Protection (EEP) helps thwart multiple attack techniques that try to compromise Windows and macOS endpoints. The Alert Logic multi-vendor attack monitoring and isolation recognizes these techniques and stops them early before any damage is done. This protection has been extended to the Windows Server Agent, and the following article provides best practices and recommendations for best utilizing EEP with Windows Server Agent.
Note: You must have an Alert Logic Managed Detection & Response entitlement - Essentials, Professional, or Enterprise - to utilize EEP.
Best Practices and Recommendations
Alert Logic recommends that you keep the Extended Endpoint Protection for Windows Server Agent in Detect mode (protection "off") for a minimum of two weeks, which is important to ensure no false positives. For environments with critical assets and/or frequently changing development, it is highly recommended that you keep the EEP Windows Server Agent in Detect Mode only.
Alert Logic also recommends the EEP agent be utilized on Windows and Mac desktop and laptop end user systems. For Windows Server assets, Alert Logic recommends a thorough consideration of the operational and resource requirements before installing the EEP agent. Alert Logic only recommends the EEP agent be installed on Windows servers when there is a security need identified for file-less malware detection and when the Endpoint Notification feature has been configured to alert operational teams to potential threats immediately. Additionally, we recommend that you couple EEP with another endpoint vendor to ensure full coverage for vulnerabilities, as EEP is exclusively focused on detecting file-less malware.
Support and Requirements
See below for the platforms, hardware, and languages that Alert Logic Extended Endpoint Protection for Windows Server Agent supports, as well as operating system requirements.
Windows Server Supported Platforms
- Windows Server 2008 R2
- Windows Server 2012
- Windows Server 2016
- Windows Server 2019
Linux Server Supported Platforms
- Not supported
- 64-bit operating systems running on 64-bit processors
- Windows 7 32-bit operating systems
- Intel processors
- AMD processors
OS-Level Language Support
- US English
- UK English
Memory and Disk Usage
|64-bit Operating Systems||32-bit Operating Systems|
|198MB of memory||102MB of memory|
|306MB of disk space||306MB of disk space|
EEP is supported on guest virtual machines powered by most commercial hypervisor providers, such as VMware, Amazon Web Services, and Microsoft Azure.
For more information on EEP, see our Requirements for Alert Logic Extended Endpoint Protection documentation.