Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have created a new group & policy in AMP and moved the existing machine from a different group/policy to the newly created group. Note - Newly created policy is assigned to the group. However new policy is not getting reflected for the machine. Als...
There was an instance where Cisco AMP was detecting an infected file and while quarantine and moving to "Quarantine" folder it was renaming to .DAT files. Do Cisco AMP rename threat detected files while moving to Quarantine?
I have accidentally set AMP Product version to 7.2.11 on the policy and servers got upgraded from 6.2.9 to 7.2.11 and pending for reboot. However since these are production servers i cant reboot and they are marked as "Unprotected". How can i rollbac...
We have enabled Malicious activity protection feature in cisco AMP, how do we validate it in policy.xml. What is the key word to search and check if it has enabled or not. Can someone help in this regard.
We are upgrading few servers from AMP conenctor 7.1.5 to 7.2.11, however machines are not upgrading and failed because of below error in "Device Trajectory". Error - Connector update from 7.1.5 to 7.2.11 failed. Error: A driver error caused the upgra...
The silver lining to this is that after the update from 6.x.x to 7.x.x reboots are no longer required when updating endpoints to a newer version and you also get access to newer features. Please see the release notes for more information on 7.2.11 an...
Thanks Matt for the response!! We see only "System process protection" and not "Script process protection". Incase if its a subset of "System process protection" feature how do we see a particular alert for "Script process protection". Please guide m...
Thanks Matt. I just need to fetch complete list of vulnerabilities. I have couple of questions. a) How do we use AMP API to get the list of all software vulnerabilities. Can you please provide some supporting document to run this queries. Also can we...
