cisco Amp pc3000 not detecting malware using local protect DB in standalone connected mode
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-28-2019 05:37 AM - edited 02-20-2020 09:11 PM
cisco Amp pc3000 not detecting malware using local protect DB in standalone connected mode.
--> Verified the protect DB and it shows present.
--> Using default audit policy with file audit option
-->tested malware by downloading EICAR file
eicar_com.zip (2546dcf..9eedad)[ZIP Archive] was Created by explorer.exe (d5bc504..4c58ef)[Unknown].
Let me know if any suggestions.
- Labels:
-
Endpoint Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-30-2019 07:55 PM
Hard to say what's going on without looking at your configuration directly. I would recommend opening a TAC case and the engineer should be able to sort out the issue for you.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-30-2019 09:05 PM
