Hi Team,I have a customer who is requiring an Anti-Malware solution for their Servers and Workstations which are not connected to Internet.The customer has an isolated environment and they are looking for an Anti-Malware solution without Internet acc...
Forum Posts
Resolved! Cisco AMP Cloud - realtime email alerts?
We are using the standalone cloud version of Cisco AMP (console.amp.cisco.com) with the AMP for Endpoints connector on our workstations. I don't see anywhere in the admin console to set up realtime email alerts? We would like our SOC team to get an...
Hi Team, We are using FireAMP private cloud and trying to upgrade the FireAMP Connector version from 4.1 to 5.1, option enabled is to Ask For Reboot before upgrade. But for some reason the same is not happening and getting the below error in the lo...
Hello, I wonder if someone can give me an advice on how I can deploy AMP for endpoints onto Windows 2008 server which is an older edition (not R2). According to the official Cisco statement it is still supported and I need an earlier version 5.x.x or...
Hi. We see high CPU utilization on all of our Linux systems (Mix of RH 6 and CentOS 6 ). Have tried upgrading to the latest connector (1.6.0.536) - but that did not solve the problem. Have tried installing on a few systems - same result. We are afra...
On one of our servers which runs many databases, the AMP temp file for scanning appears to be ballooning to 15+ gigs and filling up the C drive. Is there a way to see exactly what AMP is scanning so we can adjust out exclusions appropriately?
Resolved! Default Outlook Temp Exclusion
Hi, We are seeing an issue where the default Cisco AMP exclusions for Outlook aren't enough because Outlook Temp is also under /private/var so it's scanning this location and we are getting inundated with Threat Detected notifications every time so...
The most consistent false positive i get in amp for endpoints is .tmp files from outlook. here is an example below. I'd like to be able to create some kind of exclusion to ignore this type of event. My thought was to make a process exclusion for outl...
I’m trying to deploy AnyConnect on ftd version 6.2.3. I’ve chosen the outside security zone (also tried interface group) as interface, but every time i try to deploy I get the error below. If I remove the vpn policy from the device (two 2130 in ha), ...
i was trying to open my website but couldnt due to virus or melware . i did scan my laptop and cleaned it but still cant open the website from my laptop.
Hi, We purchased the AMP application when reading the installation documentation it states to open a TAC case to have the Identity synchronization activated. I can't find anything on the Internet to confirm this. Can someone clarify the steps necessa...
Hi Everyone,In version 5.0 we made changes to the way files and paths are stored. Our existing articles will be updated soon and we apologize for the delay. The files and paths are now stored in an referential structure in the historyex.db file. Atta...
Dear,does the AMP for end point subscriptions covers Smartnet. what type of support it provides
Resolved! Updated policy with serial number xxxx
"Updated policy with serial number xxxx" displayed at policy update,What does the xxxx part show?
Hello, we have configured the Antimalware policy to block malware, but when we do a test of antimalware test download from the below site, it gives an option to save the file in internet explorer, the antimalware is not blocking. it should not give a...
