It blows my mind that there is no option to generate a log file during the client install. Am I wrong?Understand Command Line Switches for Secure Endpoint Installer - Cisco
Forum Posts
Hello, We have some issue with an API used to register endpoint on ISE. I'm looking for logs, report where I can see Identity Group Endpoint, registration, move and deletion. Currently, I only find the last/current status. Hope it's clear, thank you....
Resolved! Windows Defender and Cisco ISE
Dear All, I need to know if Cisco ISE 3.1 is compatible with Windows Defender? I found this document on Microsoft site that confirm it: Network access control integration with Microsoft Intune | Microsoft Docs But I' d like to know if it is also true...
We recently were asked about generating events or alerts when an endpoint hasn't been updated for more than 30 days. Is anyone actively doing this or have ideas how this can be done?
I need help deploying/installing the AMP Connector through Intune. I have converted the 'amp.connector.exe' file to the Intunewin format. However, I believe I am having trouble with the installation and uninstallation commands. I need assistance in f...
Hello,I want to forward the alerts generated from Cisco Secure Endpoint to my custom SIEM.Which type of API would best fit in this case? Thanks, Dino
Good morning,I cannot access Secure Endpoint on 07/18/2024 with the same password I use to submit the TAC Case. I know my pw is accurate. Has anyone else experienced this today? I wonder if this is a me issue or a Cisco issue.My case is 697674126Than...
Resolved! Hidden User Created | CtxPkmService
Good morning,Anyone else who uses Citrix and Secure Endpoint seeing alerts for Hidden User Created with the value CtxPkmService being added into \MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList ?This looks a FP ...
Hi Cisco Community,I've run into an issue with the Cisco Secure Endpoint Connector on Windows Server 2008 R2 Service Pack 1. Specifically, when two users login simultaneously, the policy changes automatically from English to Chinese. Interestingly, o...
Hi,Accidentally, I have removed the following aaa configuration from cisco ASA by executing below commands:no aaa authentication ssh console vmware-laas LOCALno aaa authentication serial console ISE LOCALno aaa authentication telnet console ISE LOCAL...
Resolved! Using Local ISE users for 802.1X
I'm working for a client who wants 802.1x configured on their switchports. The environment is an airlocked one. Currently there is no a record to permit joining the server to AD. It looks like i'm going to have to setup local users for each person...
Hello Team, I am trying to get Cisco AMP4e logs to Splunk, while configuring the input I am getting below error.Add-on - Cisco AMP for Endpoints Events Input - 3.0.0Splunk Version - 8.2.7Note: The API host, ID and Key are correct. Verified with below...
Admins being admins like to use powershell to solve certain task. To do this they will often run a powershell file downloaded from a server, i.e:C:\windows\system32\WindowsPowerShell\v1.0\powershell.exe -NoProfile -ExecutionPolicy Bypass -Command iex...
We are having a user that has been running into perofmance issues stemming from secure endpoint, when looking at the logs I see their machine's policy is being updated multiple times a day. What does the entail? And how can I fix this?
We have deployed Byod access for mobile devices on wireless using Cisco ISE guest portal with AD authentication. Customer ask is the user should not get the Portal redirect and authentication every day, it should be able to connect directly on the ba...
