Endpoint Security

Hi Experts,   We have a AMP Virtual Private cloud setup running on a VM with 2 NIC - one for the management and other for the AMP Console. I understand that the management is majorly used for the initial setup and configuring management related tasks...

Hi Community, I have Cisco_Firepower_Estreamer and forwarded all the logs in to my SIEM (QRadar). from there I have identified below event type. Can someone please help me on clear these events activities. Event type -  IOC_STATE_RECORD (what this me...

Hi all,  Is Cisco AMP Endpoint can work in parallel with another antivirus endpoint without affecting the PC performance

Is this already available, or in the roadmap?

I am looking for a way to uninstall Amp from a remote computer. Unfortunately I am unable to use powershell so I tried to use psexec to uninstall Amp from a target machine on the network. If I connect to the target machine and run the following comma...

Cisco have published an article regarding firewall rules: Required Server Addresses for Proper Cisco Secure Endpoint & Malware Analytics Operations - Cisco What is unclear is where to allow the firewall rules from in the component architecture. I hav...

Hello   I have been able to find documentation for setting an uninstall password utilizing the /uninstallpassword switch for the AMP client... Is it possible to set an uninstall password on the Mac client?   Thank You

My shop utilizes cisco firepower and umbrella. We have to make a decision on an endpoint protection product. Since we’re using the other cisco products would it be best to go with Cisco AMP? The current endpoint product is from another vendor, but wi...

Hello - I'm trying to find out if AMP enabler profile for AnyConnect is supported on FTD, similar to how it is being done on ASA as explained below? https://www.cisco.com/c/en/us/support/docs/security/advanced-malware-protection-endpoints/200284-Inst...

Hello,  I have created an IOC file with several md5 for a zero attack vulnerabilityI try to scan through AMP but I get an error"Error Code: 2147942408Description: Not enough memory is available to complete this operation" It it the first time I run a...

I would like to know if these has been anybody who has installed an AMP Linux connector with a Debian successfully and without any major implications. As far as i know, only Ubuntu is officially supported and no plans for official support have been s...

Hi Cisco Community,do you know if there is some way of deploying Cisco AMP without enabling the Network Extension that does traffic inspection?We are having some compatibility issues with a printing software, and if we disable the Network Extension e...

Hi teamHow does AMP Endpoint behaves while being offline?Is there a guide somewhere to explain how AMP protects systems while offline?Thanks   

Hello,  I would like to ask two questions for AMP The logs are stored foe 30 days right? How could I extend this interval? How could I see if it logs event types like malware activities and start stop of the service? Thanks and regards, Konstantinos