Incorporates Nat's review

benironside · benironside · commit aa5f97c1cda7 · 2025-01-28T10:35:38.000-08:00
diff --git a/docs/serverless/edr-manage/identify-third-party-AV-products.asciidoc b/docs/serverless/edr-manage/identify-third-party-AV-products.asciidoc
@@ -1,10 +1,15 @@
 [[identify-third-party-av-products]]
-= Use Endpoint Insights to find incompatible AV products on your hosts
+= Identify antivirus software on your hosts
 
+.Technical preview
+[IMPORTANT]
+====
+This feature is in technical preview. It may change in the future, and you should exercise caution when using it in production environments. Elastic will work to fix any issues, but features in technical preview are not subject to the support SLA of GA features.
+====
 
-Third-party antivirus (AV) software installed on your hosts can interfere with {elastic-defend}. Issues with running third-party AV alongside {elastic-defend} can be mitigated, but first you have to identify which AV is present. 
+Third-party antivirus (AV) software installed on your hosts can interfere with {elastic-defend}. To mitigate issues with running third-party AV alongside {elastic-defend}, you first have to identify which AV is present. 
 
-After you've installed {elastic-defend} on one or more hosts,  you can use **Endpoint Insights** to check whether your endpoints have third-party AV software installed. Using the same kinds of LLM connectors as Elastic AI Assistant, Endpoint Insights can analyze file event logs from your hosts to determine whether antivirus software is present. From there, you can address any incompatibilities to make sure your endpoints are protected.
+After you've installed {elastic-defend} on one or more hosts, you can use **Endpoint Insights** to check whether your endpoints have third-party AV software installed. Using the same kinds of large language model (LLM) connectors as Elastic AI Assistant, Endpoint Insights can analyze file event logs from your hosts to determine whether antivirus software is present. From there, you can address any incompatibilities to make sure your endpoints are protected.
 
 .Requirements
 [sidebar]
@@ -17,7 +22,7 @@ To use this feature, you need:
 --
 
 [discrete]
-== Start using Endpoint Insights
+== Scan your hosts for AV software
 
 * Find **Endpoints** in the navigation menu or use the global search field. 
 * Click on an endpoint to open its details flyout, then under *Endpoint Insights*, click **Endpoint Insights scan**.
