Data Loss Prevention

Hello,

I need to setup DLP on an environment where there is no Active Directory. They have about 130 endpoints that need to be monitored with Endpoint Prevent, and those 130 endpoints need to be organized in 9 different groups; policies will be assigned to each group.

Is it possible to manually add each endpoint (by hostname and IP) on Enforce console and create user groups with them?

Please advice. Thanks in advance.

We will use Endpoint Prevent only, and we won't have AD.

If we install the Endpoint agents, will they be reflected on Enforce and could be used to create User Groups?

Do we need to install all Endpoint agents to be able to create and assign policies or we can create all policies even without having all User Groups defined and populated?

Without active directory (or some type of LDAP), I don't think you can use the actual user groups functionality.  However, you can add users to your policies manually essentially accomplishing the same thing. 

You also can add only certain policy groups to the endpoint server that the endpoint is pointing at, but that may not work for your situation.