Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
452
Views
0
Helpful
2
Replies

ManageEngine Endpoint DLP policy and Cisco AMP coexistence issue

Easwar
Level 1
Level 1

‎12-10-2023 11:10 PM

When Endpoint DLP policy by ManageEngine injects dll's into processes to monitor sensitive file transfer actions or events, Cisco amp kills the process where the dll is injected into. There is no option to exclude dll injections from specific vendors or whitelisting the dll themselves using any signature. What can be done for this case?

Labels:
0 Helpful
2 Replies 2

Matthew Franks
Cisco Employee
Cisco Employee

‎12-11-2023 04:56 AM

It seems like ManageEngine is offering similar protection as Exploit Prevention.  You can disable one of the two so they are not competing, or you can open a TAC case and they can add a DLL exclusion in Exploit Prevention from the backend. 

Thanks,

-Matt

0 Helpful

Troja007
Cisco Employee
Cisco Employee

‎12-13-2023 01:48 AM

Hello @Easwar, qq, can you please explain some more details about "kill process"?? Which process gets killed? the ManageEngine process?? Is there any Event shown in the Secure Endpoint console?
Greetings, Thorsten

0 Helpful
Customers Also Viewed These Support Documents