NGIPS & AMP for endpoint blocking

ymadheka — Tue, 12 Mar 2019 08:57:22 GMT

Hi Team,

We are working on an opportunity of NGIPS & AMP (Network and Endpoint) at a bank and the have been asked whether we can achieve the same in the solution offering. The query is as below:

Query: In case of McAfee AV not available or installed on an end user machine (to be considered as rogue machine) is there any policy that can be configured in NGIPS / AMP that can block the network communication for these endpoints.

We have mentioned that to define the network access by checking the presence or absence of a condition ISE posture check is required but just checking if there is any other workaround that can be done to achieve this with NGIPS and AMP solution offering.

Kindly advise.

Thanks & Regards,

Yogesh Madhekar

I don't think one can achieve

Marvin Rhoads — Mon, 20 Feb 2017 15:03:14 GMT

I don't think one can achieve that with either NGIPS or AMP for Endpoints.

As you noted, ISE Apex license with Posture Service configured would be the solution.

topic I don't think one can achieve in Network Security

NGIPS & AMP for endpoint blocking

I don't think one can achieve