Agent Policies Configuration
Policies should be configured at the global level, from which they will be automatically inherited by all customers
It is also possible to override the global policies at the individual customer level, if tenant-specific configurations are required
Admins can define exclusions to prevent false positives detections:
It is highly recommended to define these policies prior to agent deployment to ensure consistent behavior across all environments
SentinelOne Agent Installation Instructions
Follow this article for complete installation guidelines
Follow this article in case you wish to migrate existing licenses
Uninstallation Process for SentinelOne Agents
1. Automatic Procedure - Single Device:
Admins can initiate an automatic uninstallation process for SentinelOne agents directly from the dashboard:
Go to the ‘Devices’ tab
Verify the view is filtered as ‘Agent Status’ equals ‘Active’
Devices with One Agent Installed (SentinelOne Agent):
Locate the relevant device and click on the ‘Uninstall Agent’ button
Approve the uninstall request by clicking on the ‘Uninstall’ button
Once the uninstall process is triggered, the device moves to the 'Pending Uninstall' status
Once the uninstall process is complete, the agent is deleted and the device is removed from the list
Devices with Two Agents Installed (both Guardz and SentinelOne)
Locate the relevant device and click on the ‘Uninstall Agent’ button
Select the relevant agent
Approve the uninstall request by clicking on the ‘Uninstall’ button
During the uninstall process, the device will be visible under both the ‘Active’ and the ‘Pending Uninstall’ statuses (as it had 2 agents)
Once the process is complete, the device will remain under ‘Active’ status, reflecting only the agent that remains installed
Each action such as 'Uninstall requested' or 'Uninstall finished' will be recorded in the Audit Log, visible in the right side of drawer.
2. Automatic Procedure - all Devices:
Admins can initiate an automatic uninstallation process for all SentinelOne agents of a specific customer:
Select the relevant customer
Go to the ‘Security Controls’ tab and open the ‘Endpoint Security’ section
Click on the ‘Deploy’ button and scroll down
Click on the ‘Uninstall agent from all devices’ option
Click on ‘Uninstall’ to approve the request