Endpoint Security

FTD file event/malware performance reporting?

How can check the impact of AMP/FTD lookups on connections? On tests I've done, sometimes the scanning slows connections down. I need to be sure this doesn't cause a timeout. Is there any way to tell if incoming connections are getting dropped/time...

Resolving AMP for Endpoints TETRA Definition Issues

Hi Everyone, Recently we were made aware of a TETRA AV definition update which caused the Windows AMP for Endpoints service to crash. Note: Customers who do NOT have TETRA enabled are not affected by this issue. While we have already remov...

Resolved! Would you consider AMP endpoint protection negates the need to remove Administrator access

We are rolling out AMP for endpoints, and a lively internal discussion is whether we shoudl rely on AMP's malware protection so that we can provide our end-users with Administrator access. I'd be interested in people's thoughts.

Resolved! AMP for Endpoint 6.0.7 performance problem

hi all, when i upgrade 6.0.5 or older version to 6.0.7, machines are too slowly and even it does not allow click on desktop. boot safemod with networking and i uninstall agent, pc go on to work normally. what is the problem for 6.0.7 ? manuall...

AMP for End Points version 6.0.710670 does not add the registry key in question

Hi, According to the release notes of the new AMP for End Points, version 6.0.7.10670 the registry key for the January and February MS updates should have been added automatically upon upgrading\Installing. However, it doesn't add the key, tried it...

When is the AMP for Endpoints going to be on the iOS?

Does anyone know?

AMP alert for JS:Trojan.JS.Agent.QTW

We received an alert during a scan that referenced JS:Trojan.JS.Agent.QTW. That is nice except that the Google has never heard of this maware under any of the 11 (out of 59) vendors that Virustotal claims looked at the tm.js file that triggered the ...

Resolved! AMP multiple customers

Hi all,I was wondering if it's against Cisco AMP licensing T&C to buy like 1000 seats and then manage multiple customers via policy and different groups and use this as license pool?Thank you.

Are you new to AMP for Endpoints?

We've got some great resources for those of you just getting started with Advanced Malware Protection (AMP) for Endpoints. Take a look at our Get Started guidebook. You'll find dos and don'ts, deployment strategies, and more.If you have a question ...

archives not detected

Hi,i'm testing cisco firepower AMP, it is correct that with a "malware block" policy in AMP all tests with ecrypted files fail ?i using this site:metal.fortiguard.comit seems to block only plain, tar and cab files.

No Malware Events Seen - eStreamer Integration(FMC & IBM Qradar)!!

Hi Team, I need some assistance to have visibility for Malware events on IBM Qradar, the estreamer integration works fine and I can see events, IPS, Connection logs however I cant see any Malware events. I have tried to generate Malware events fo...

File dispositions

Hi,How can I have the following:Full scan started by the scheduler.Scan completed successfully.Found 10 detections, 0 suspicious files and 0 hidden files.Scan time 6 hours.Scanned 1244779 files, 289367 directories and 109 processes.Engines used: SHA,...

URL to trust for amp for endpoint

Hello, I find on this doc https://www.cisco.com/c/en/us/support/docs/security/sourcefire-amp-appliances/118121-technote-sourcefire-00.html URL to open for AMP for Endpoint operations. After deploying my configuration my AMP connector is still disconn...

how to know if my organization's computers are running AMP??

is there any way to know or scan a network where my computers resides and know if a computer is not running AMP for Endpoint and install it??

endpoint not moving to new group

I created a new group with new a policy. i got to and endpoint and click on management and click move to group. everything looks good. In the console it looks like it moves but on the endpoint still points to the old policy. even if i stop and start ...

Endpoint Security

Forum Posts

FTD file event/malware performance reporting?

Resolving AMP for Endpoints TETRA Definition Issues

Resolved! Would you consider AMP endpoint protection negates the need to remove Administrator access

Resolved! AMP for Endpoint 6.0.7 performance problem

AMP for End Points version 6.0.710670 does not add the registry key in question

When is the AMP for Endpoints going to be on the iOS?

AMP alert for JS:Trojan.JS.Agent.QTW

Resolved! AMP multiple customers

Are you new to AMP for Endpoints?

archives not detected

No Malware Events Seen - eStreamer Integration(FMC & IBM Qradar)!!

File dispositions

URL to trust for amp for endpoint

how to know if my organization's computers are running AMP??

endpoint not moving to new group

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Cisco Secure Access Policy for Mobile Devices

Best Practices: Managing Cisco AMP and Windows Defender on Intune Devi

Umbrella Secure Client (Anyconnect Umbrella only) and Citrix

Orbital Execute Powershell Cmdlet for installed modules from PSGallery

error:x509 certificate signed by unknown authority - Cisco Orbital AMP

Can't get fresh install of Secure Endpoint, nor can I uninstall. HELP!

Microsoft Edge slow website load times when Endpoint Security is on

APIv3 does not allow grabbing list of computers?

Secure Client Cloud Management Deployments not saving

Add Secure Endpoint (AMP) to iPhones with MDM