topic Secure Endpoint CLI Usage &amp; Documentation in Endpoint Security https://community.cisco.com/t5/endpoint-security/secure-endpoint-cli-usage-amp-documentation/m-p/4492127#M6460 <P>Hi all,</P><P>&nbsp;</P><P>Just wondering if Secure Endpoint has any CLI-based tools to assist in remote work on an endpoint itself (e.g., disable the service for troubleshooting, enable debug logging without using the GUI, get/change configuration, etc.); and, if so, if there is accompanying documentation.</P><P>&nbsp;</P><P>"C:\Program Files\Cisco\AMP\*\ipsupporttool.exe"</P><P>This seems like a diagnostic tool ( akin to the GUI-based Diagnostics button for computers ), and the IPSupportTool log suggests there are switches for it ([-h] [-d install_path] [-o output_path] [-t timed_support] [-m archive_size] [-j job_id] [-H time_stamp]). However these switches don't appear to work nor is there an archive created post-execution. It just dumps some files in 'C:\Program Files\Cisco\AMP' (installed_app.csv, running_process.csv, installed_services.csv, systeminfo.txt, etc.). These files do not appear to be in the resultant archive from the Console-based 'Diagnostics' feature for a computer.</P><P>&nbsp;</P><P>"C:\Program Files\Cisco\AMP\*\AmpCLI.exe"</P><P>Would appear to be the right tool, but only looks to have one option (posture) that prints basic Secure Endpoint status information</P><P>&nbsp;</P><P>"C:\Program Files\Cisco\AMP\*\sfc.exe"</P><P>Seems to be the primary Secure Endpoint process for scanning and such, but no CLI interface options</P><P>&nbsp;</P><P>Thank you</P> Mon, 25 Oct 2021 19:51:18 GMT TruthNotTruth 2021-10-25T19:51:18Z Secure Endpoint CLI Usage & Documentation https://community.cisco.com/t5/endpoint-security/secure-endpoint-cli-usage-amp-documentation/m-p/4492127#M6460 <P>Hi all,</P><P>&nbsp;</P><P>Just wondering if Secure Endpoint has any CLI-based tools to assist in remote work on an endpoint itself (e.g., disable the service for troubleshooting, enable debug logging without using the GUI, get/change configuration, etc.); and, if so, if there is accompanying documentation.</P><P>&nbsp;</P><P>"C:\Program Files\Cisco\AMP\*\ipsupporttool.exe"</P><P>This seems like a diagnostic tool ( akin to the GUI-based Diagnostics button for computers ), and the IPSupportTool log suggests there are switches for it ([-h] [-d install_path] [-o output_path] [-t timed_support] [-m archive_size] [-j job_id] [-H time_stamp]). However these switches don't appear to work nor is there an archive created post-execution. It just dumps some files in 'C:\Program Files\Cisco\AMP' (installed_app.csv, running_process.csv, installed_services.csv, systeminfo.txt, etc.). These files do not appear to be in the resultant archive from the Console-based 'Diagnostics' feature for a computer.</P><P>&nbsp;</P><P>"C:\Program Files\Cisco\AMP\*\AmpCLI.exe"</P><P>Would appear to be the right tool, but only looks to have one option (posture) that prints basic Secure Endpoint status information</P><P>&nbsp;</P><P>"C:\Program Files\Cisco\AMP\*\sfc.exe"</P><P>Seems to be the primary Secure Endpoint process for scanning and such, but no CLI interface options</P><P>&nbsp;</P><P>Thank you</P> Mon, 25 Oct 2021 19:51:18 GMT https://community.cisco.com/t5/endpoint-security/secure-endpoint-cli-usage-amp-documentation/m-p/4492127#M6460 TruthNotTruth 2021-10-25T19:51:18Z