We have procured Cisco AMP.Right now we are in deployment phase,where we stuck up with challenge.
We have procured cisco AMP Endpoint Cloud service.
Deployment in Dektop/Laptop works ok.
The challenge we face is deployment is in the server zone where the requirement is to configure the server to connect with AMP Server which is hosting in the Cloud. Here is the challenge as we do not want the AMP client on the server to communicate to the cloud over Internet,as we do not want this server to connect to internet at all for any update in policies or signature as this are mission critical servers
Is there any alternative way to update this amp client without connecting to the Cloud ,like configuring a super agent or GUP type system.
Require urgent help on this.
Basically, the AMP for endpoints connector is used to query the AMP service in the cloud for:
You can move the TETRA updates to an on-prem appliance (free download).
The problem is the file disposition lookups. Currently, you can have AMP in the public cloud, or you can have a private cloud (virtual appliance that you host in your datacenter). What you cannot do today is mix those in the same "business" and have them share data.
My suggestions (in order):
1.Pain is to open this servers to internet which will be to own up added risk.
Option 2 looks good to me,if vendor agree to splitup license
option 3 will be worst case if negotiation fails.