Learn how to enable or disable Quarantine Policy and understand the implications thereof on your workload VMs.
NSX Cloud uses public cloud security groups for threat detection. For example, when Quarantine Policy is enabled, if NSX agent is forcibly stopped on a managed VM with malicious intent, the compromised VM is quarantined using the quarantine (in Microsoft Azure) or default (in AWS) security group.
Start with disabled for Brownfield deployments: Quarantine Policy is disabled by default. When you already have VMs set up in your public cloud environment, use the disabled mode for Quarantine Policy until you onboard your workload VMs. This ensures that your existing VMs are not automatically quarantined.