Endpoint Security

Orbital endpoints not populating

I have Cisco AMP MSP console with multiple organizations in it. Some have basic tiers of AMP and some have advanced. When I navigate to one of the consoles with Advanced tier and try using Orbital it askes me to sign in. Then I pick Secure X Sign On....

Does AMP generate audit failure logs?

I am very new to this Cisco product, and am currently going through some vendor security questions, and one of the questions is if our end user security will generate a log in the case of a failure to write a separate log. This might be a very simple...

False Positive Communications

Early on 5\21\2022, Cisco Endpoint Protection trapped this event: 'detected a Cloud IOC: Executed Malware IOC'. It was classed as 'AMADEY' Malware. Because it was classified as a HIGH threat, and we have automated actions enabled, the affected comp...

Bug Listing for AMP

Hello! I'm looking for a bug listing for AMP. Specifically, where new bugs are acknowledged to exist by Cisco. The most recent example of the IOC for chrome.exe is an example. I did receive an email, but I'm searching for where this bug is listed alo...

Google Chrome update detected as Malware

Lastnight I received many alerts about the Chrome update being indentified as Malware, until around 10PM EST, when a retrospective Malware alert was received making that file as Clean.Did anyone else see this same behavior?

Chrome stopped working

I have this warning from Cisco AMP and I don't know how to solve it. Could anyone please help me in this? chrome.exe has been detected as W32. Trojan.NM.Quarantine was successful.

Security Endpoint associated user to computers

hi there, I've enrolled some computers in AMP and now want to "link" computers to users. I've checked the documentation and I haven't found any possible solution. When I go in Insight in SecureX and see the device, I see a field "Associated user" whi...

Does Cisco amp supports Antibot

Hi all, Does Cisco AMP Supports Anti bot ? . My Requirement is something like thisit should complements existing endpoint security solutions by monitoring network ports for rogue activity and detecting infected internal endpoints sending command and ...

Signature Set Update and Component Download

Good day, I'm still learning this product, but I was curious on the Signature Set Update and Component Download(Failure/Success) events. Can someone break down exactly what happens with these events? Thank you,Maurice

Exclusion policies not transferring to VDI environment

Hey all, I've been able to get exclusions done on our physical workstations, but haven't had success with getting Secure Endpoint to exclude certain paths. I've tried blocking the processes by including the path to the executable, I've tried using th...

Can I make a Cisco Standalone FTD 4110 HA?

I have what may seem a like a simple question. I have a Standalone FTD 4110 appliance that is a managed by FMC. I have added a second identical standalone 4110 to FMC(same software version etc.) . The First FTD is completely configured. If I create ...

Cisco AMP

Evaluating Cisco AMP, and I would like some community feedback on how you see this product stacking up against Defender ATP etc.IMO: AMP is lacking user logon monitoring. There is no analysis on this part. Failed logons to a server, creation of new a...

AMP for Endpoint or Anti-Virus software ?

Since the tetra antivirus engine is a part of the AMP for endpoint, do we need an Anti-virus software from other vendor in addition the AMP-4-Endpoint?

Custom Exclusion/White list for Script Control

Hi, I have a couple of questions:1> In the Script Control section of the policy.xml file there is an option to exclude certain processes or whitelist a folder, however I couldn't find where to configure these settings in the Secure Endpoint console. ...

Best for endpoint protection?

My shop utilizes cisco firepower and umbrella. We have to make a decision on an endpoint protection product. Since we’re using the other cisco products would it be best to go with Cisco AMP? The current endpoint product is from another vendor, but wi...

Endpoint Security

Forum Posts

Orbital endpoints not populating

Does AMP generate audit failure logs?

False Positive Communications

Bug Listing for AMP

Google Chrome update detected as Malware

Chrome stopped working

Security Endpoint associated user to computers

Does Cisco amp supports Antibot

Signature Set Update and Component Download

Exclusion policies not transferring to VDI environment

Can I make a Cisco Standalone FTD 4110 HA?

Cisco AMP

AMP for Endpoint or Anti-Virus software ?

Custom Exclusion/White list for Script Control

Best for endpoint protection?

Get ready! Great things are coming to Cisco Community

New name, same great product: Cisco Spaces

Congratulations to the July 2022 Spotlight Award winners!

Microsoft Teams stores auth tokens as cleartext in Windows, Linux, Mac

ISE certificates

how to configure cisco 5506x for diynomic ip address

Cannot access Cisco AMP free trial

Microsoft Defender Vulnerability incorrect

Secure Client Umbrella Configuration

Cisco Secure Client (including AnyConnect)

Secure Endpoint Advantage API v3 how to remove old computers

Can't stop service with Secure Endpoint service in 8.0.1

Reboot Required after Update