Endpoint Security

Can mac spoofing override port-security?

Hello, I have 100 buildings, with different /24 subnets, i.e. example - 10.74.1.0/24 - 10.74.100.0/24 and all under same VRF. But its a critical service such as home CCTV, therefore I don't want one apartment to see other and talk to any other. I hav...

AMP for Endpoints connect to another private cloud

Hi all, is there an easy way to connect an amp4e connector to another private cloud without installing the connector new? maybe just by changing or switching a few files?

Resolved! Does Endpoint AMP send syslog event ?

Hi Sir: Does Endpoint AMP send syslog event ? or AMP can get any information by restFul or API ?

Does Endpoint AMP send syslog event ?

Hi Sir: Does Endpoint AMP send syslog event or send the log by any methods ?

AMP for endpoints installation failed due to the following reason - The installer process timed out.

Hi, I pushed the AMP for Endpoints via AnyConnect using AMP Enabler. I can see the AMP Enabler is installed and AMPEnabler_ServiceProfile.xml is loaded on the C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\AMPEnabler path. Also the temp...

FTD Malware File Policy

Hi, I have created a malware file policy to block malware for PDF & Executables. When I attach the malware file policy to my Access Control Policy acl I receive a warning " Configured Ports will prevent the file policy from being triggered" The acl...

Resolved! AMP and selfservice

Is there a way to offer our users a self service facility to upload and analyze their files? Do they have to contact us everytime they have / receive a suspicious file or attachment? thx

Resolved! Exclude/whitelist a source server IP address

Is there a way to either whitelist or create an exclusion in Cisco AMP so that anything coming from that IP address or server is ignored by the Cisco AMP agent? We have a KACE appliance that downloads Windows updates to the clients and I would like t...

Using exclusions in AMP For Endpoint.

I’m preparing a number of PoV’s on AMP4E and wonder hos exclusions should be handled. According to the user guide (and the raining I have received) exclusions must be made on both AMP and the antivirus. It all make sense. Never the less; I’m running ...

Resolved! Best recommended book for sourcefire/firepower

Hi All, Any recommended book to learn cisco sourcefire/firepower from zero to hero??

AMP for Endpoint

Does AMP for Endpoints have any native memory-based malware blocking capability? Not looking for detection, but active protection for memory based malware without the use of CTA? Thanks,

Resolved! AMP on Citrix environment

Hi all, We have a customer who is interested for AMP for Endpoint deployment. All the clients are on Citrix environment and I don't know specially how citrix works. Do I need one instance of AMP for each console or just one instance on the citrix ser...

AMP for Endpoints - Deploying on VMView VDIs

Has anyone had any real world experience deploying AMP for Endpoints on Virtual Desktops (VMView to be specific) Our VDI environment uses non-persistent WIndows 7 and WIndows 10 desktops. The official CISCO/Firepower documentation is a bit vague. I ...

FireAMP for Endpoint: Windows Virus/Spyware Protection Notification

I've recently installed FireAMP with TETRA on Windows 7 and 10 and have deinstalled/deactivated any onther security product, including the built-in Windows Defender (which will, annoyingly, automatically turn itself back on after some time). Shouldn'...

Can AMP be configured to prevent Word from spawning child processes?

I cannot block cmd.exe or wscript in my environment as a whole, but I would like to prevent MSWord and Excel from spawning them. There is no legitimate reason for Office products to kick of these. Can this be done through AMP?

Endpoint Security

Forum Posts

Can mac spoofing override port-security?

AMP for Endpoints connect to another private cloud

Resolved! Does Endpoint AMP send syslog event ?

Does Endpoint AMP send syslog event ?

AMP for endpoints installation failed due to the following reason - The installer process timed out.

FTD Malware File Policy

Resolved! AMP and selfservice

Resolved! Exclude/whitelist a source server IP address

Using exclusions in AMP For Endpoint.

Resolved! Best recommended book for sourcefire/firepower

AMP for Endpoint

Resolved! AMP on Citrix environment

AMP for Endpoints - Deploying on VMView VDIs

FireAMP for Endpoint: Windows Virus/Spyware Protection Notification

Can AMP be configured to prevent Word from spawning child processes?

Can I find my Cisco Contract number in my CSE or Webex account?

MDM IPAD NOT REGISTERED on cisco ISE

Cisco Secure Access Policy for Mobile Devices

Best Practices: Managing Cisco AMP and Windows Defender on Intune Devi

Umbrella Secure Client (Anyconnect Umbrella only) and Citrix

FMC Rule to allow HTTPS connectivity to FQDNS

False positive?

What is the login URL for Cisco CSE?

CSCwn30806 - KUTOOLS get blocked

Are there any apis to generate events?