Secure Endpoints (AMP) Policy Updates

rcarmack1 · ‎09-29-2021

Hello,

One thing I found with Secure Endpoints policy updates is that the connector will only update the policy, if the serial number is higher than the policy serial number on the connecter. If you make changes to an exclusion, allow, block list, the serial number does not update. You actually have to go into the policy and make a change to increase the serial number so the connection will update on it's next heartbeat check.

I assume it's not possible to have the policy automatically update the serial number when a change is made to a list?

Thanks

Ron

Wojciech Cecot · ‎10-06-2021

Hello,

Changes in exclusion lists that are associated with policy will increase its serial number (just tested in my lab). Changes in Allowed and Blocked Applications lists will not impact serial number of policy, while those details are stored in cloud - in other words those are not part of policy update.

-Wojciech

rcarmack1 · ‎10-06-2021

Thanks for checking and posting your reply. That the same results I’m seeing.