I would like to add an IP the the SEPM so that workstations in the environment will not respond as being attacked and locking the IP out for 600 sec
What is the step by step?
Thanks!!
You need to add that IP to the Excluded Hosts config in the IPS policy.