Endpoint Security

Dear Cisco,We've upgraded a test fleet of Windows devices to Cisco Secure Endpoint 8.0.1 (from version 7.5.5). We noticed on every device that after the upgrade the debug logging has been (automatically) activated in the client. We have to stop it ma...

AMP has been generating a Cloud IOC alert for the following command line: C:\WINDOWS\System32\sdbinst.exe -m -bg I can't find anything for these arguments "-m -bg".  Has anyone come across this or know what it means? 

Good day all! I was curious if Secure Endpoint scans files automatically on removable media as soon as it's detected by the computer that it's mounted to? Thank you,Maurice

Hi Everyone!We received a notification stating that our Secure Endpoint Licenses will expire in a few days. I need to know what are the consequences for this, is someone knows. Will we lose the agent connectivity with the cloud console? will we lose ...

Dears, an External venerability scan is done on a Cisco FTD and a "TCP/IP Initial Sequence Number (ISN) Reuse Weakness" is found on port 443. how to solve this venerability ?  Regards, Roy

We have been getting a lot of threat detection's / quarantines from .Net lately. I had Cisco verify the one was a false positive. But the rest?C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\98921009e55886bd7472286a92fc76d7\System.Core.ni....

Hello,Im getting error installing Cisco Secure Endpoint "Failed to stop the Cisco Secure Endpoint service, cannot proceed with the update"In log: Running Pre-Install Verification...Extract: C:\Users\MARKWI~1\AppData\Local\Temp\AMP.Installer\{82376BA4...

Hi,At the end of a daily flash scan, I received a notification about "System.Core.ni.dll" detected as "Trojan.GenericFCA.Agent.43742" on a server.Detection : Trojan.GenericFCA.Agent.43742Fingerprint (SHA-256) : 037d21bde9393560e7302376e58d4c5d7d7a35b...

Can we use the ISE default self-sign certificate for certificate-based authentication in ISE? as I m doing the POCPlanning to export ISE default self sing certificate and import to endpoint trusted root certificate store via MMC for certificate-based...

Hello team,I am unable to login to Cisco AMP endpoint security. Recently my mobile phone has been formatted so I lost the Authenticator access on my mobile. So required your kind help for access back the same. Please help me out on it. RegardsDhruba

  You can become a Threat Grid Guru, ripping through Behavioral Indicators, Network Activity, Processes, Artifacts (on disk, in memory or from the network download), Registry Changes, File System Changes, integrated intelligence and more; becoming ev...

hi ,   I'm using the amp4e_ldap_tool to upload Active Directory users in AMP. Unfortunately I'm fighting with this error I don't understand:   (base) giovannis-MacBook-Pro:amp4e_ldap_tool giovannigadaleta$ amp4e_ldap_tool amp -c Traceback (most recen...

Hi all, This is the guide I followed and the problem is on the part 6 https://community.cisco.com/t5/security-knowledge-base/ise-posture-prescriptive-deployment-guide/ta-p/3680273 I have set the Radius object on FMC and assigned the redirect acl for ...

Hi all:I need to replace a Cisco ASA-5505 for a small (6 hosts / devices behind the Firewall) church outfit which has reached EOL support and was quoted from the cisco sales engineering team at the distributor as follows:Line # Part # TD Part # Descr...