About stipend

stipend · 04-09-2025

We have a ServiceNow ticketing connector set up. Currently it can only create a ticket either for a fix or for a vulnerability. And creating a ticket has to be done manually.Can the API assist with automatically creating tickets? For example, create ...

stipend · 02-11-2025

Does the APIv3 not allow to grab a list of computer GUIDs in an organization? Do I have to grab the list using APIv1 or v0 and then save the GUIDs to use them in v3?The APIv3 reference only lists connector uninstallation under the Computers section.h...

stipend · 05-24-2024

In our Incoming Mail Policies, we have a policy for blocked senders. In that policy, there is a single Sender/Recipient rule which holds all the blocked senders. Is there any way prevent users from adding more rules and limit their access to only edi...

stipend · 07-13-2023

This VMware article says to exclude certain files from real-time scanning. Is that different from scheduled scans?Are the two different? I'm guessing they are since for AMP to work and detect malicious files and processes, it needs to be conducting r...

stipend · 04-05-2023

My ultimate goal is to have some form of CMD line logs sent into Splunk. Due to reasons, Sysmon or any other tool is not possible. We only have AMP logs being sent to Splunk. Currently we only get what CMD line arguments were used if there is a cloud...

stipend · 02-14-2025

mine is finished, thanks.

stipend · 02-11-2025

Thanks! I had to create the credentials in another area from where I created the APIv3 credentials.

stipend · 02-11-2025

Not sure if you can assist with this or if you want me to make a separate post but I'm having troubling authenticating via APIv1. Below is my Python code. Do you know what I'm doing wrong?I'm getting a 401 error unknown API key or Client ID. I know t...

stipend · 04-19-2023

For Slow Connection Flood consider turning the "when host is source" to "on" for the Inside Hosts default policy. Because you shouldn't see this very much between inside hosts (as discussed in more detail in the documentation for this alarm), you p...

stipend · 04-18-2023

I tried the Relationship Alarm but I found that to be too generic as you said. I instead created a role policy which says to Ignore alarm when A is source and "On+Alarm" when A is target. Its too bad though there is no definitive way to make a policy...

Member Since	‎02-21-2023 07:25 AM
Date Last Visited	‎04-09-2025 12:05 PM
Posts	15
Total Helpful Votes Received	1

User Statistics

User Activity

Cisco Vulnerability Management - Using API and Ticketing Connector

APIv3 does not allow grabbing list of computers?

Anyway to limit the rules/filters users can edit in a policy?

Are real-time scans different from scheduled scans?

Secure Endpoint / AMP : Possible to capture ALL cmd line arguments?

Re: APIv3 does not allow grabbing list of computers?

Re: APIv3 does not allow grabbing list of computers?

Re: APIv3 does not allow grabbing list of computers?

Re: Excluding an alarm between two host groups

Re: Excluding an alarm between two host groups