Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all!I have configured Cloud Email Security Search and Remediate according to this guide - https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/esa_user_guide_13-5-1/b_ESA_Admin_Guide_ces_13-5-1/b_ESA_Admin_Guide_12_1_chapter_010101.html H...
Hi!I am following this document to configure outgoing email from O365 to CES - https://www.cisco.com/c/en/us/support/docs/security/cloud-email-security/214812-configuring-office-365-microsoft-with.html#anc8 Is there something I am missing about the O...
Hi!We have a firewall installed with the 6.5 track.Exact FTD version is 6.5.0.4FMC version is 6.5.0.4-57I have patched with hotfix "Cisco_FTD_Hotfix_H-6.5.0.5-2"FMC reports successful installation of hotfix, but in GUI it still says 6.5.0.4.When I ch...
Hi!Our organization has both Cisco Umbrella and Amp For Endpoints.Let´s say we are getting blocked cause of malware, phishing etc. Is there any nice way to find out which process that blocked the dns request?I´m able to search in Cisco CTR which othe...
Reply from TAC:The SMA shows the following alerts pertaining to Server Verification error“Warning: Remediation failed for MID(s): 21172 initiated as part of batch Remediate. Reason: server certificate verification error (Host IP)” What can be done?Th...
Hello Chris,I enabled API logging as you suggested, but it does not log when I initiate a job. Should I instead start a case with TAC regarding this?Best regardsJohan
Shouldn't it be rather easy to get AMP for endpoints to flag any processes that tries to connect to any of the blockpages that Umbrella shows. For example if Umbrella blocks a malware classified page, it sends an DNS response back with 146.112.61.107...
