Will my licensing automatically convert to production at the end of the PoC?
Yes, the CrowdStrike MDR implementation will be automatically converted to production at the end of the 21 day PoC unless canceled before the conversion
What are the responsibilities of the partner?
Management of the deployment process
Deployment of the CrowdStrike Agents
Creating a Clean Baseline for the devices
Implementing Protection Phase
Maintaining polices and exclusions
Removal of duplicate or retired machines
Providing Tier 1 support to your customers
Contacting SonicWall MSS for any Tier 2 or Tier 3 issues that you are unable to resolve
Remediate issues identified from the provided report card
Further investigate alerts sent from the SonicWall MSS SOC
What are the Deliverables from SonicWall MSS?
Provides training, support, and documentation
Setup and configuration of the Syslog/SIEM settings within the SIEM/SOAR platform
Alerting of abnormal, suspicious or malicious behavior
See the following article for more details on our SOC response: EPP Alert Processing
Initial response to a compromise
Implementation
What if I already have CrowdStrike deployed and want to move to the CrowdStrike MDR offering?
Our CrowdStrike MDR offering requires devices to be registered in accounts created under our overall management.
You will need to uninstall and reinstall the CrowdStrike sensor to have the devices register in the CrowdStrike MDR account.
What devices do I need to install the CrowdStrike agent on?
The CrowdStrike agent should be deployed on all devices in an environment
Is there a Multi-tenancy option?
Yes, all CrowdStrike MDR accounts are setup with a ‘Parent-Child’ architecture
Partners will be able to create their own customer sites and maintain policies as desired
Customers will not be able to create their own tenants within the partner's Account
Support
How do I contact support?
To start a support ticket, partners can visit https://msssupport.myportallogin.com and when asked to select a product, select Endpoint Security, and then CS Support.
Meetings can be scheduled via the CrowdStrike Support Calendly page:
This site uses cookies to ensure you get the best experience.By using this site you agree to our use of cookies for analytics, and for personalized content and ads.