Overview
This article provides a high-level summary of the initial steps for setting up Incydr, including:
- User management
- Deploying agents to user devices
- Configuring settings
- Troubleshooting
For additional assistance with any of the steps below, contact your Customer Success Manager (CSM) to engage our Professional Services team.
Step 1: Sign in to the Incydr console
Most tasks related to managing users, devices, organizations, and settings are performed in the Administration section of the Incydr console. For a summary of all navigation options, or to find the sign-in URL for your environment, see Incydr console overview.
Step 2: Add organizations
By default, your environment contains a single parent organization. Creating additional organizations enables you to group users into a hierarchy and apply different settings to each organization. Create organizations before you add users. (You always have the option to create new organizations and move users between organizations later, but it's easier to create organizations first.)
To add an organization:
- Sign in to the Incydr console.
- Select Administration > Environment > Organizations.
Active organizations appear in the list. - Click Create organization.
- Enter a name.
- Select a parent organization.
- Click Create.
For more details, see Add organizations for user management.
Step 3: Add users
Before adding users, identify your provisioning strategy:
- Incydr User Directory Sync (UDS): Uses LDAP to sync your directory service with Incydr.
- SCIM provisioning: Enables you to sync any SCIM 2.0 provisioning provider with Incydr.
- Manual entry in the Incydr console: If you do not want to sync with a third-party directory service or provisioning provider, you can manage users locally in the Incydr console (includes options for bulk upload via a text file and sending email invitations to users).
For detailed steps for each method, see Add users from the Incydr console.
Next, review options for user authentication and authorization. This includes integrating with single sign-on (SSO), if applicable.
Step 4: Optimize insider risk detection and file activity monitoring
Follow the steps outlined in Detect and respond to insider risks to ensure you're capturing all file activity for review and investigation.
Step 5: Customize device settings (optional)
The default settings are appropriate for many situations, but you have also have the option to customize organization, user, and device settings.
Insider risk agent
- To review and edit organization settings related to authentication, endpoint data collection, and proxy see organization settings.
- To review and edit device settings such as reference information and notes, see the Devices reference.
Backup agent
- To review and edit organization settings related to security, backup, and restore, see organization settings.
- To review and edit device settings related to CPU usage, backup timing, and networking see device backup default settings.
- For detailed instructions on what to back up, including exclusions and other backup settings, see Considerations for defining your backup policies.
For the most high-value settings, see Optimize settings for the backup agent.
Step 6: Deploy agents to user devices
There are many options for deploying agents to user devices. In most cases, use a deployment policy. For detailed deployment policy instructions, see:
For additional deployment options and instructions, see Manage agent installations.
Additional resources
The Incydr support site provides extensive tutorials, best practices, reference guides, troubleshooting, and more for all aspects of Incydr's products. Use the search bar at the top of any page to search for specific topics, or browse available resources from any of these links:
Contact support
If you don't find what you need on our support site, Contact support: create a ticket, chat, or call.
Comments
Please sign in to leave a comment.