Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Recently I've been noticing a higher than usual Secure Endpoint exploit prevention events sourcing from browserhost.exe which is part of McAfee WebAdvisor.
Is anyone else seeing these exploit prevention events?
From CSE, management, computers, I attempted to export a computer list to csv but received the following error:
I also tested from multiple tenants but I'm receiving the same error. Anyone else running into this? Is Cisco having a backend reportin...
We recently were asked about generating events or alerts when an endpoint hasn't been updated for more than 30 days. Is anyone actively doing this or have ideas how this can be done?
In the past, I've used the Cisco Umbrella Active Directory Integration to on-prem DCs which imported users, groups, and computers. This allowed me to use any combination of the three identities in my policies.
We have a new customer using Azure AD I...
@Matthew Franks you are correct and apologies for the confusion. The initial query provides all results as expected. I was trying to figure out how to limit the information displayed to hostname and last_seen. I will test this with a script inform...
