Endpoint Security

I created a new group with new a policy. i got to and endpoint and click on management and click move to group. everything looks good. In the console it looks like it moves but on the endpoint still points to the old policy. even if i stop and start ...

HI,  How can I set real time notification for security team. I intend to real time monitor and alert if security event occurs on endpoint.  

Are there any known issues with SCCM deployments of AMP and logging into the Deployment Summary logs in the AMP console.  I have recently deployed connectors and the systems do not show up in the Deployment summary list but the machines do appear as ...

Hello Experts,   can any one please explain me, what does deleting session and new session means in below logs from source fire appliance. Though the rules are allowed on firewall , only one way traffic is seen, I cannot see bi-directional traffic.  ...

Are there any known issues with SCCM AMP deployments not showing in the Deployment Summary logs??   I recently did a deployment of connectors that are not showing in the logs but do show under the managed connector policy.  Any help would be greatful...

The release notes for AMP for Endpoints Console 5.4.20171128 stated that command line data is now available on the API. However, I did not find any mention of this capability in the API documentation which still only lists two versions v0 and v1. Has...

Upgrading the AMP for Windows connector to version 6.0.5 seems to detect itself as a threat, and the number of compromises on my dashboard are growing like crazy.  Below is an example of what it's detecting:   Event Type: Threat Detected in Exclusion...

Our company has about 32 users that got this message from the attached screen shot. It detected the threat but will not quarantine. It fails to quarantine on every system. When we look at the location of the file, the file isn't there. The threat cam...

Hi All,I have a question about ThreatGRID appliance integrated with Cisco ESA for local sandbox analysis.Is it possible to receive notification from ThreatGRID appliance in case of an analized file is classified as Malware?I.E could be a good option ...

Hi folks, we want to set up an AMP for network deployment with Private Cloud appliance, Threat Grid Appliance and FMC in a critical customer´s environment. Of course - security comes first - so there are many security zones and firewalls already in p...

Hello dear Cisco AMP Fans,Does Cisco Fireamp (AMP for Endpoint) supports MS ELAM (Early Launch AntiMalware)?Thanks.

Help others discover the benefits of your Cisco products by writing a review on Gartner Peer Insights. Customers who complete an approved review of ENFW,  ISE or AMP for Endpoints have the chance to receive a $25 Amazon gift card, emailed directly to...

  Hi, We have deployed ASA since last few months, everything is working fine, but we have observe that sometimes if a file is declared Malware disposition from Cisco Cloud, it randomly changes to 'unknown' and that malicious file passed on to interna...