SaaS
Configure Agents — Dashboard
Configure per-agent settings: shadow mode, approved tool lists, risk thresholds, and connection details — all from the ShieldAgent dashboard with no config files or deployments.
Shadow mode
Shadow mode lets you observe traffic without blocking anything. Ideal for onboarding a new agent and building a baseline before writing policies.
- 1.Go to Agents → [your agent] → Settings.
- 2.Toggle Shadow Mode: On.
- 3.Run your agent for a few sessions. All tool calls are logged but never blocked.
- 4.Review the Events tab to confirm expected tool usage, then switch to Enforce mode.
Approved tools list
Restrict an agent to only the tools it needs. Any tool call not on the approved list is denied automatically.
- 1.Go to Agents → [your agent] → Approved Tools.
- 2.Click Add tool and type the tool name (e.g.
read_file). - 3.Save. Changes take effect immediately — no redeploy needed.
Example approved tool list
✓read_file
✓list_directory
✓search_files
✗write_file (not approved)
✗execute_command (not approved)
Risk thresholds
ShieldAgent scores every tool call on a 0–100 risk scale. You can set per-agent thresholds to auto-block high-risk calls or require human review.
Block threshold80Calls scoring ≥80 are denied automatically
Review threshold60Calls scoring 60–79 go to the review queue
Alert threshold40Calls scoring 40–59 trigger an alert but are allowed
Configure thresholds at Agents → [your agent] → Risk Settings.