Hi all, I am able to get a list of devices when i use this path in the API script for Cisco Secure Client (formerly Cisco AMP)REPORT_URL = "https://api.apjc.amp.cisco.com/v3/organizations/<orgID>/devices?size=10"However, i am attempting to create one...
Forum Posts
Hello, everyone. I am studying security for my ENCOR exam and I have a question regarding the Cisco AMP4E (or secure endpoint) and Cisco Malware Analytics (or Threat Grid) appliances. My book defines Malware Analytics as following: "Cisco Secure Malw...
Hi,While exploring the Cisco Secure Endpoint (AMP) interface, I noticed there's a section related to ClamAV signatures.I wanted to understand: What is the ClamAV functionality used for in this context?Does it enhance malware detection on Linux system...
Resolved! Better Understanding
Hello All,Lately we have been getting multiple alerts across our system for file fetch failures, file fetch completed, as well as component download failures. I have looked far and wide for a better understand of what these mean exactly, as well as i...
Hi everyone,We recently encountered a blue screen (BSOD) on one of our Windows Server 2016 systems running Cisco Secure Endpoint connector version 8.4.4.30419. At this point, we're not 100% sure if Cisco is the root cause, but the timing aligns with ...
Hi everyone, Had multiple machines alerting for Absolute Software CTES files: Names: CtGeoPrvPackage.zip, GEO_Windows-GEO-1.0.13.6 SHA256: dcadf2ca20756544ac8a007a1da94e6f932770558128658280a5ece2828791da Name: abwfscnEx.dll SHA256: ...
Resolved! Secure Endpoint API PATCH methods
Hi everyone,I'm trying to make some API calls on Secure Endpoint, particularly regarding the /v1/groups/ route.I'm able to perform GET, POST, and DELETE requests without any issues, but I'm struggling with the PATCH methods.The one I'm especially int...
Stupid question, I know; But can I reference/confirm my Cisco Contract number in my CSE or Webex account?For support purposes, this would be much easier than having it external to the software. (And is done in many other software service products, o...
Hi We are having an issue with a new deployment of Umbrella Secure Client (Only Umbrella loaded) and Citrix VPN. When the client is enabled we are seeing 25-30% more traffic going to the VPN IP. When the Secure Client is uninstalled it's gone, thi...
I am trying to create an access policy for just mobile devices, that will block certain content categories that are different from macOS/Windows devices. I have the macOS/Windows policies such as our global allow and global block applied to just thos...
Hi , We seem to have an Integration issue where our Ipads are coming up as not registered even though on they are registered from from a Mobile Iron point of view Anyone ever came across this issue and managed to resolve it ? Thanks Nate
Good Day Everyone, I "think" I have an issue with my Secure Endpoint instance.Logged in to the Secure Endpoint Portal (with full admin rights), I've created my policies and have enabled the orbital feature set on a few policies. I should be able to a...
Good morning Team! I have been tasked to investigate, why our FTD Firewall backups are failing to be sent to out FTP server;the local backups on the FTDs are working. Is there a way to view the failure logs of the FTDs using the FMC?Any advise would...
Hola, Estoy haciendo el curso de ciberseguridad. Todo iba bien hasta que llegué al laboratorio de Seguridad de Terminales - Atacando lo que hacemos - Servicios Empresariales. El laboratorio es "atacar una base de datos MySQL", en el cual se pide el a...
I am seeing a "virus scan failed" error on Intune-managed computers when downloading files.Additionally, I found something strange... Microsoft says the Attachment Manager setting should be under Computer\HKEY_CURRENT_USER\Software\Microsoft\Windows\...
