How to prevent a user from changing the settings of Cisco Jabber for example he will not be able to turn off the biometric identification?
Forum Posts
I have a lot of Endpoints that have failed to update their Signatures within the last 24 hours. After looking into it, the Error Code showing for these events is 52 but I have no reference material to address this. Anyone know what the error code mea...
Hello,I have a MacOS with Umbrella installed on it. Umbrella is active via the Cisco Secure Client, however the status of the roaming profile is as the title says, "Application config file could not be loaded". I have confirmed that updating my profi...
Hello, On my ASA, I see the logs from ASDM, in notification mode, but I only see the accesses appearing in deny.ACLs authorize all HTTP/HTTPS traffic to our proxy server. How can I see not only traffic incoming refused, but also everything that is au...
How to use the ISE API to obtain as many data as the .csv file fields generated from Total Endpoints->Export->Export All in the web page?Currently, I use Postman to use https://XXX.XXX.XXX.XXX:9060/ers/config/endpoint to obtain the following:{ "Sea...
Resolved! Cisco Secure Endpoint issue.exe
Hi team. I received an alert of an Endpoint related to lsass.exe, but after analyzing the SHA-256 (95888daefd187fac9c979387f75ff3628548e7ddf5d70ad489cf996b9cad7193) they are clean and in the correct path and the truth is from my point of view I do n...
If a file is quarantined by AMP for endpoints, is the end user that had the file supposed to be notified?We had this happen and there was no warning for the end user.Is there a setting to turn this on or is there not supposed to be a warning?
How do you find the password for a file that you request that is quarantined? I tried to unlock the file using the same thing that we would use to unlock a CISCO endpoint device, but apparently the person before me did not document it. Where can I co...
When a scheduled custom endpoint scan runs it will pop up in your face until you minimize it. A scheduled flash scan will not do this. This started at version 8.1.7 and I've since upgraded to 8.2.1.21612, Secure Client UI 5.0.00837. The policy settin...
We are getting hundreds of these threat detections this morning in our environment. These are all considered "low" and the smss.exe file is clean (SHA-256: 56afe5133fdc5806ec6b19436f7b55f1499cfc94619740c171424fbcf7808fd3)Seems to be triggered at logo...
Hello everyone, Is there a way to know what windows updates the AMP connector version 7.5.15 requires to be installed on Windows 7? Regards, Kelvin
Resolved! Base64JS.min.js
Good afternoon, we are using Cisco AMP with our connector version being 8.2.1.21612 and are receiving numerous alerts for a filename Base64JS.min.js. Is anybody else experiencing this? Previously we had a widespread issue with a smss.exe parent proce...
hello.I'm trying to do an ISE failover. As far as I know, unlike wlc, ise does not automatically change the secondary device to primary even when the primary device is turned off. So how should we check the results of a successful failover? I think i...
Hi everybody, my name is Stephanie and I connect customers with the teams working on new features for security products such as Secure Endpoint, Firewall products, XDR and more. I'm reaching out today because we are looking for people to give feedba...
Anyone having this issue as well on some W7 systems?Error Code 16019Connector update from 7.5.5.21061 to 7.5.7.21234 failed. Error: Unable to verify Secure Endpoint's digital signature. Please update Windows..
