Hi,I am getting this error while installing v8.2.1.21612. I have completely uninstalled the previous versions and rebooted several times. Many computers in our environment do not have this issue only a few Windows 10 machines. Any help would be great...
Anyone else seeing large numbers of failed retrospectives on the following? We have 350 so far.Disposition: MaliciousFilename: Adobe Genuine Helper.exeDetection SHA-256: abcf2c8bab98cedb1bd973a0cefa747e6fe9d835248e4471f7cf9c26446abe6eAppears to be ge...
Hello all i have created an event stream and configured the queue on siem to collect events. i was able to verify that events are being collected using Ruby tool. Also on my eventcollector i was able to see communication with cisco AMP on tcpdump. ...
I have installed AMP on several machines in various modes like protect, triage etc. I install on my Mac and it doesn’t appear in the console. I have re-installed several times but it never appears. The only machine i actually want it to work on do...
Hey, I have ISE deployment with 16 nodes 8 in DC and 8 in DR, In DC i have 1 primary PAN, 1 MnT and 6 PSNs. Same goes for DR, I have the licenses on my smart account that has 30k premier licenses and 2 device admin nodes, when i link my smart accou...
Hi team,I want to connect to Cisco Threatgrid API and then pull the user list and delete specific users. I want to pull the user list because I need the user IDs to delete these users. But I couldn't find the appropriate endpoint. There are different...
Does anyone have a translation for error code 3242196993 in the context of Secure Endpoint, policy update failed events?
We often see in the infrastructure that the user tries to download/move a malicious file from a flash drive to the desktop several times in a row, but the file quarantine does not always occur. That is, for 5 successful quarantines, there may be 1 fa...
Hello,I have to download an older AMP connector to update on some old OS's.My question is, if I change the connector version in my policy, will that force all the devices in that policy to try to download the newly specified version?Or do I just have...
It blows my mind that there is no option to generate a log file during the client install. Am I wrong?Understand Command Line Switches for Secure Endpoint Installer - Cisco
Hello, We have some issue with an API used to register endpoint on ISE. I'm looking for logs, report where I can see Identity Group Endpoint, registration, move and deletion. Currently, I only find the last/current status. Hope it's clear, thank you....
Dear All, I need to know if Cisco ISE 3.1 is compatible with Windows Defender? I found this document on Microsoft site that confirm it: Network access control integration with Microsoft Intune | Microsoft Docs But I' d like to know if it is also true...
We recently were asked about generating events or alerts when an endpoint hasn't been updated for more than 30 days. Is anyone actively doing this or have ideas how this can be done?
I need help deploying/installing the AMP Connector through Intune. I have converted the 'amp.connector.exe' file to the Intunewin format. However, I believe I am having trouble with the installation and uninstallation commands. I need assistance in f...
Hello,I want to forward the alerts generated from Cisco Secure Endpoint to my custom SIEM.Which type of API would best fit in this case? Thanks, Dino
