I can not login in AMP secure X portal, I have created account, but when I am tried I got error: Unable to sign in. Please verify that you have created your account, and try resetting your password. Too many failed password attempts will lock your ac...
Forum Posts
I observed whenever “Inline Result” generated “would have dropped” action , traffic processed by the IPS Policy ( INTPOL-01v1 from the Image ) which is called at Advanced Section of Actual Policy ( Perim-01 1st Image ). Even though “Drop when inlin...
I have a group and child groups. I can separately assign Endpoint versions to each group in the Product Updates section of their respective policy object. If I set the policy at the parent group to offer a new version of the Endpoint in the Product U...
Hello all,Just patched an FPR-1010 with the Hotfix for Log4J. While Patch History says that it is there, when I look at version either through FDM or via the CLI, there are no trace of its presence. How can I confirm the patch is there and running. I...
Cannot install the following on red hat host: Cisco Secure Endpoint Connector Version: 1.17.0.802 Error: [root@ ciscoamp]# sudo yum localinstall amp_haproxy_rhel-centos-8prev.rpm -yUpdating Subscription Management repositories. Package ...
I have a long story which I believe culminates in a pretty huge bug with AMP/Secure Endpoint, and I'm amazed how it's not been reported en masse (that I've seen), let alone resolved. Since 2020, we have been struggling with an issue where our univer...
My shop utilizes cisco firepower and umbrella. We have to make a decision on an endpoint protection product. Since we’re using the other cisco products would it be best to go with Cisco AMP? The current endpoint product is from another vendor, but wi...
Greetings!I'm having issues with one server in particular where AMP is disconnected and states it can't connect to the internet.In the SFC.exe.log file I can see these errors, assuming this is the problem. I have monitored the traffic leaving the ser...
Are there any recommendations on which queries from the Orbital catalog should be executed on a recurring basis to populate data into the Threat Response Private Intelligence remote data store and the frequency for which they should be run?Also, is t...
I need to import the configuration of one device to another. So far the only options provided is either backup / restore which only worked partially (missing objects and rules) or to re-enter it using the gui. Anybody knows a way to do this through ...
Hi, I am getting this error recently when I move computers to another policy. failed to update policy with serial number Error CodeDescription3240099844Configuration reload failed It was working last week and there are no changes in the network o...
Resolved! Secure Endpoint - warn trusted
I am newer to the Secure Endpoint Product and cannot find int he user guide or our current documentation for a warn trusted cert. I am assuming with the amount of software etc that is out there this could be a pretty normal occurrence and to keep an...
Resolved! False positive for log4j ????
Hello,During scan, we found an apache server vulnerable to Java.Exploit.CVE_2021_44228-9914600-2. The culprit file was the "log4j-core-2.16.0-tests.jar"How this is possible? The log4j is supposed to be vulnerable for versions till 2.15.Should I treat...
I'm working with ISE in my home lab and I noticed there is no "Policy set" in under policy menu webui. how to enable it?Service Identity Engine, Endpoint Security
Hello, sorry for my english. I writed a python api post code for add a mac add to endpoint group (whitelist), but now need another python api rest code for delete a mac add form DB ise directly.. (not from whitelist)..The new code need question it th...
