home

Mobile Endpoint Security

Mobile Endpoint SecuritySecurity Service Edge
Mobile Endpoint SecuritySecurity Service Edge

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Show Contents

Mobile Endpoint Security

Setting up Organization-Level Admin Access and Protection Policies

Enabling On-Device Threat Protection

On-Device Threat Protection blocks compromised devices in your fleet from accessing corporate or Web resources. By enabling this feature, you can use Block internet and alert or Block domains and alert as responses in your protection policy settings. The first setting blocks all internet access on a compromised device. The second setting blocks a list of domains that you can configure from this tab.

Some policy responses, such as OS Out-of-Date or Patch Level Out-of-Date only allow you to block certain domains, since the device needs internet access to resolve the threat.

Because On-Device Threat Protection runs as an always-on VPN, users must accept the VPN permission from the Lookout for Work app during setup, and the device cannot have another always-on VPN present.

To enable and configure On-Device Threat Protection from the Multi-Tenancy Admin Console:

  1. Click Protections in the left navigation bar.
  2. Click the Manage settings for: dropdown and click the device group you wish to configure:


  3. Click the On-Device Threat Protection tab and enable or disable the feature for the selected group.
  4. To only block specific domains when Lookout detects threats on a device, add entries to the Block specific domains list.

    If you leave this list blank, Lookout blocks all internet traffic on the device until threats are resolved.

  5. Click Save Changes.
  6. Click Configure policies to go to the Protections tab.

    You can now use the Block Internet and Alert or Block Domains and Alert Response settings.

Last updated: November 20, 2024

lookout-footer

Legal Privacy Policy Cookie Policy Transparency Report Compliance Info Compliance Info (Gov)

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.