topic Re: Secure Endpoints (AMP) Policy Updates in Endpoint Security

Secure Endpoints (AMP) Policy Updates

rcarmack1 — Wed, 29 Sep 2021 16:44:59 GMT

Hello,

One thing I found with Secure Endpoints policy updates is that the connector will only update the policy, if the serial number is higher than the policy serial number on the connecter. If you make changes to an exclusion, allow, block list, the serial number does not update. You actually have to go into the policy and make a change to increase the serial number so the connection will update on it's next heartbeat check.

I assume it's not possible to have the policy automatically update the serial number when a change is made to a list?

Thanks

Ron

Re: Secure Endpoints (AMP) Policy Updates

Wojciech Cecot — Wed, 06 Oct 2021 13:49:30 GMT

Hello,

Changes in exclusion lists that are associated with policy will increase its serial number (just tested in my lab). Changes in Allowed and Blocked Applications lists will not impact serial number of policy, while those details are stored in cloud - in other words those are not part of policy update.

-Wojciech

Re: Secure Endpoints (AMP) Policy Updates

rcarmack1 — Wed, 06 Oct 2021 15:37:44 GMT

Thanks for checking and posting your reply. That the same results I’m seeing.