Using groups/policies sensibly
Having decided to spend some time improving our protection (hence the flurry of questions) I think I'm getting close to where I want to be.
Is is possible to use groups to remove some endpoints from being reported on ?
I have split our estate into "in use" and "not yet deployed" endpoints. The undeployed ones are in a lockroom safe. The idea is when they are issued (connect to the internet etc) they'll update the endpoint etc. Until then they won't report, or will show as very out of date.
So I need a policy, or a way to tell GravityZone that endpoints in this group can be ignored.