One or more Endpoint Security clients report an At Risk status in the Cyber Defense Management console.
The Status Reason indicates that Download Insight is either disabled or malfunctioning.
The Antimalware policy is unlocked.
When the policy is unlocked this can contribute to the At Risk status.
To resolve this, ensure that the Antimalware policy assigned to the device group is locked. Once the client receives this updated policy this will clear up the At Risk status.