Endpoint Security

Cisco have published an article regarding firewall rules: Required Server Addresses for Proper Cisco Secure Endpoint & Malware Analytics Operations - Cisco What is unclear is where to allow the firewall rules from in the component architecture. I hav...

Hello   I have been able to find documentation for setting an uninstall password utilizing the /uninstallpassword switch for the AMP client... Is it possible to set an uninstall password on the Mac client?   Thank You

My shop utilizes cisco firepower and umbrella. We have to make a decision on an endpoint protection product. Since we’re using the other cisco products would it be best to go with Cisco AMP? The current endpoint product is from another vendor, but wi...

Hello - I'm trying to find out if AMP enabler profile for AnyConnect is supported on FTD, similar to how it is being done on ASA as explained below? https://www.cisco.com/c/en/us/support/docs/security/advanced-malware-protection-endpoints/200284-Inst...

Hello,  I have created an IOC file with several md5 for a zero attack vulnerabilityI try to scan through AMP but I get an error"Error Code: 2147942408Description: Not enough memory is available to complete this operation" It it the first time I run a...

I would like to know if these has been anybody who has installed an AMP Linux connector with a Debian successfully and without any major implications. As far as i know, only Ubuntu is officially supported and no plans for official support have been s...

Hi Cisco Community,do you know if there is some way of deploying Cisco AMP without enabling the Network Extension that does traffic inspection?We are having some compatibility issues with a printing software, and if we disable the Network Extension e...

Hi teamHow does AMP Endpoint behaves while being offline?Is there a guide somewhere to explain how AMP protects systems while offline?Thanks   

Hello,  I would like to ask two questions for AMP The logs are stored foe 30 days right? How could I extend this interval? How could I see if it logs event types like malware activities and start stop of the service? Thanks and regards, Konstantinos

Endpoint environment: AMP for Endpoints Connector v1.13.2.731 running in Protect Mode on RedHat Linux 6.9 VM Hi, all - The below two messages are almost constantly spamming on above platform - almost 900,000 count today alone: Jun 15 15:28:53 hostnam...

Hello, I'm here to ask if anyone is experiencing lockups/freezes with the latest Windows 10 updates/build? My issue is, when our users workstations boot up and they log in, after 30-90 seconds Windows Defender warning comes up and says the threat ser...

Hello, When Cisco AMP is enabled I cannot open Google Chrome. The latest version of Google Chome is 91.0.4472.114 (64-Bit) with the 7.3.13.20165 Cisco AMP version. I noticed the problem 2 months ago with a user who has a Dell 5502 laptop. Even when I...

ISE 2.6Is there any PING tools built in to the UI ? I cant find anything .getting 802.1X timeout in my Meraki dashboard event logs and subsequently not able to login to SSID or receive any DHCP address.