Hi all, Does Cisco AMP Supports Anti bot ? . My Requirement is something like thisit should complements existing endpoint security solutions by monitoring network ports for rogue activity and detecting infected internal endpoints sending command and ...
Forum Posts
Good day, I'm still learning this product, but I was curious on the Signature Set Update and Component Download(Failure/Success) events. Can someone break down exactly what happens with these events? Thank you,Maurice
Hey all, I've been able to get exclusions done on our physical workstations, but haven't had success with getting Secure Endpoint to exclude certain paths. I've tried blocking the processes by including the path to the executable, I've tried using th...
I have what may seem a like a simple question. I have a Standalone FTD 4110 appliance that is a managed by FMC. I have added a second identical standalone 4110 to FMC(same software version etc.) . The First FTD is completely configured. If I create ...
Evaluating Cisco AMP, and I would like some community feedback on how you see this product stacking up against Defender ATP etc.IMO: AMP is lacking user logon monitoring. There is no analysis on this part. Failed logons to a server, creation of new a...
My shop utilizes cisco firepower and umbrella. We have to make a decision on an endpoint protection product. Since we’re using the other cisco products would it be best to go with Cisco AMP? The current endpoint product is from another vendor, but wi...
Dear Team, Could you please share CISCO secure Endpoints POV Sample Plan
Hi, want to sum up my experience with deploying Secure Endpoint Windows connector 7.5.1.20813 updates yesterday:Two notebooks with curent CPU displayed "Computer CPU incompatible with Behavioral Protection engine SSSE3 requirement." and stopped updat...
I have a Firepower 8350 that has been giving me and my colleagues a huge headache.The device is unreachable from FTD and I am trying to recover it from an .iso file. Is there a way to run a restore .iso from a Windows FTP server? I was able to get it...
Hello, am new to the tool, am trying to find out which Engine from Cisco AMP is blocking the powershell.exe. we have a .vbs script which runs on every start up to set some printer preferences, which is failing obviously due to AMP and user could see ...
Hi Experts , We have same autherization policy for all the network switches , But for few devices our access is not working , When we check the logs , we are getting below error but with username : radius-keepalive ...(this is not the actual usernam...
Yesterday I created 3 new policies and groups. I moved the endpoints to the groups associated with the policies however the endpoints are not showing up under the new policies but they do show up under the group.The endpoints show policy is up to dat...
Hello AMP Team, Trying to understand the difference between AMP Exclusion and Application Whitelist. When we would add an application/path or other
Could you help me with issue we are facing? We use PatchMyPC-ScriptRunner.exe tool for automatic software deployment/checks and this tool is creating a records in the registry similar to: \MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image Fi...
Is there anyway to offset full scans without building out multiple policies?My one policy "Servers" runs a full scan at 9am, about 60 servers. This kills my ESX hosts. They are normally sitting around 15-20% CPU usage but during the scans they are pe...
