Hello,I would like to test the "automated actions" in which the computer is isolated at a "critical severity". What are the basic ways to test this? As an example I would like to test this IOC: JS.Trojan.Generic_48153.ioc "This IOC fires when a URI p...
Forum Posts
Hi,I have updated Cisco Secure client to version 8.1.3.21242 on all endpoints Windows 10 without issues. But when I test update on two Windows 2019 servers, it installs fine but GUI is missing. I can see GUI and Secure Client service running in Task ...
Friend, could you help me with this case: update the Umbrella in all the stations and since this update there are DNS resolution problems through the VPN connection.
Hello Everyone The new CISCO AMP update 8.1 has many bugs and no GUI to work with when installed. Can we roll back to 7.5 from the AMP dashboard?
How can we delete Customers in Amp for Endpoint Console? We can only Disabled the customer but not delete.
Resolved! Full Scans
Does anyone run scheduled full scans on their endpoints at night? Are full scans tied to retrospective detections?
Hi All,Facing an Error while downloading connector and selecting groups. PFA and let me know how to resolve it.
I am trying to figure out how to block certain types of files from being created on the workstation using AMP. The example is I want to prevent a user from drag and dropping an email onto their local drive (.msg) file. I have been told I may be...
Is there a way to recover a file that was quarantined by AMP?When I try to retrieve the file I get an automated email, [Cisco Secure Endpoint] File upload failed with no further details.I do see a file in C:\Program Files\Cisco\AMP\Quarantine with ab...
Resolved! AMP - AV Update message
Hello, I have a silly question, on dashboard of AMP for Endpoints > Management > Computers, it says that a number specific of computers need AV Update, but what´s the minning of this?? Something with connector or identifies that need a third party A...
We pre-approve disk access and extensions with Jamf config profiles for silent AMP endpoint client installations on our macOS devices. Inevitably, due to bugs or interruptions or whatever quirk of the day, we wind up with some small number of devices...
Resolved! How to upgrade OpenSSL on Cisco 2960
Hello everyone,I recently had a vulnerability scan on my network and our old Cisco 2960 OpenSSL vulnerability. What are the commands I can run to upgrade or fix this issue. Here is the solution they gave me below and thank you in advance for you h...
When attempting to download the current connector from the Console, the first download succeeds, then subsequent downloads are triggering an alert for Gen:Variant.Symmi.84797Policy was updated today for the Endpoint and on version 8.1.3
Hi, I have a couple of questions:1> In the Script Control section of the policy.xml file there is an option to exclude certain processes or whitelist a folder, however I couldn't find where to configure these settings in the Secure Endpoint console. ...
I am using pda through cisco wireless. and, apWhile replacing it with 9120, the authentication method was changed to 802.1x. According to the customer, the service has been unstable since the change, and looking at the log of the pda,intermittentlyCo...
