Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3432
Views
4
Helpful
6
Replies

AMP for endpoints

Go to solution
LSA4
Level 1
Level 1

‎06-16-2016 01:46 AM - edited ‎02-20-2020 09:01 PM

Hi Guys

before i start, forgive me for this post, i just need to be pointed in the right direction.

I have installed a ASA5506 at a client site for a POV, behind their edge firewall. The ASA is sitting on the network just monitoring traffic. It picked up malware immediately.

Now the client is looking for malware for endpoints, i have read and read,

I see there are two deployment modes, Cloud Proxy mode and Air Gap mode.

client already has a virtual environment, so what do i need exactly. where will i monitor the endpoints? On FMC? or Cloud

I want an on prem solution. i have read the deployment guide, but i still feel totally lost, someone please guide me...

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
yogdhanu
Cisco Employee
Cisco Employee
In response to LSA4

‎06-16-2016 02:12 AM

You would get the cloud account credentials when you purchase the amp for endpoint.

For on-prem soulution,

http://www.cisco.com/c/en/us/support/docs/security/sourcefire-fireamp-private-cloud-virtual-appliance/118336-configure-fireampprivatecloud-00.html

http://www.cisco.com/c/en/us/products/collateral/security/fireamp-private-cloud-virtual-appliance/datasheet-c78-733180.html

http://www.cisco.com/c/dam/en/us/td/docs/security/sourcefire/fireamp/fireamp-private-cloud/FireAMPPrivateCloudUserGuide.pdf

this should help.

View solution in original post

0 Helpful
6 Replies 6

Go to solution
yogdhanu
Cisco Employee
Cisco Employee

‎06-16-2016 02:00 AM

Hi

Endpoint clients will be monitored from Cloud. You can integrate cloud to FMC to check the events there as well.

There is an on-prem virtual appliance for fireamp cloud is available as well.

FMC cannot manage the endpoint AMP clients.

Rate if helps.

Yogesh

Go to solution
LSA4
Level 1
Level 1
In response to yogdhanu

‎06-16-2016 02:07 AM

So do i setup a session in the cloud?

What is the SKU for the on-prem solution?

do i just run it on a UCS? What software must i download to the UCS? I am trying to draw this solution in my head to understand it properly. Like i said i am completely lost.

0 Helpful

Go to solution
yogdhanu
Cisco Employee
Cisco Employee
In response to LSA4

‎06-16-2016 02:12 AM

You would get the cloud account credentials when you purchase the amp for endpoint.

For on-prem soulution,

http://www.cisco.com/c/en/us/support/docs/security/sourcefire-fireamp-private-cloud-virtual-appliance/118336-configure-fireampprivatecloud-00.html

http://www.cisco.com/c/en/us/products/collateral/security/fireamp-private-cloud-virtual-appliance/datasheet-c78-733180.html

http://www.cisco.com/c/dam/en/us/td/docs/security/sourcefire/fireamp/fireamp-private-cloud/FireAMPPrivateCloudUserGuide.pdf

this should help.

0 Helpful

Go to solution
LSA4
Level 1
Level 1
In response to yogdhanu

‎06-16-2016 02:30 AM

let me do some further reading, thanks for the prompt response..

See you soon :)

0 Helpful

Go to solution
LSA4
Level 1
Level 1
In response to LSA4

‎06-16-2016 03:01 AM

last question, where do i get the ova file from ,  pic attached

Preview file
167 KB
0 Helpful

Go to solution
yogdhanu
Cisco Employee
Cisco Employee
In response to LSA4

‎06-16-2016 03:08 AM

Hi

Your accounts team should be able to provide you the link for that.

0 Helpful
Customers Also Viewed These Support Documents