Resolved! Does Endpoint AMP send syslog event ?
Hi Sir: Does Endpoint AMP send syslog event ? or AMP can get any information by restFul or API ?
Hi Sir: Does Endpoint AMP send syslog event ? or AMP can get any information by restFul or API ?
Hi Sir: Does Endpoint AMP send syslog event or send the log by any methods ?
Hi, I pushed the AMP for Endpoints via AnyConnect using AMP Enabler. I can see the AMP Enabler is installed and AMPEnabler_ServiceProfile.xml is loaded on the C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\AMPEnabler path. Also the temp...
Hi, I have created a malware file policy to block malware for PDF & Executables. When I attach the malware file policy to my Access Control Policy acl I receive a warning " Configured Ports will prevent the file policy from being triggered" The acl...
Is there a way to offer our users a self service facility to upload and analyze their files? Do they have to contact us everytime they have / receive a suspicious file or attachment? thx
Is there a way to either whitelist or create an exclusion in Cisco AMP so that anything coming from that IP address or server is ignored by the Cisco AMP agent? We have a KACE appliance that downloads Windows updates to the clients and I would like t...
I’m preparing a number of PoV’s on AMP4E and wonder hos exclusions should be handled. According to the user guide (and the raining I have received) exclusions must be made on both AMP and the antivirus. It all make sense. Never the less; I’m running ...
Hi All, Any recommended book to learn cisco sourcefire/firepower from zero to hero??
Does AMP for Endpoints have any native memory-based malware blocking capability? Not looking for detection, but active protection for memory based malware without the use of CTA? Thanks,
Hi all, We have a customer who is interested for AMP for Endpoint deployment. All the clients are on Citrix environment and I don't know specially how citrix works. Do I need one instance of AMP for each console or just one instance on the citrix ser...
Has anyone had any real world experience deploying AMP for Endpoints on Virtual Desktops (VMView to be specific) Our VDI environment uses non-persistent WIndows 7 and WIndows 10 desktops. The official CISCO/Firepower documentation is a bit vague. I ...
I've recently installed FireAMP with TETRA on Windows 7 and 10 and have deinstalled/deactivated any onther security product, including the built-in Windows Defender (which will, annoyingly, automatically turn itself back on after some time). Shouldn'...
I cannot block cmd.exe or wscript in my environment as a whole, but I would like to prevent MSWord and Excel from spawning them. There is no legitimate reason for Office products to kick of these. Can this be done through AMP?
This is my first time posting I hope this is that correct place I'm trying to do a silent install of amp connector using the following command line with switches fireampsetup.exe /R /S /desktopicon 0 /startmenu 1 /contextmenu 1 /D=C:\Program File...
We are beginning the deployment of AMP for endpoints. The current policies were auto-generated 2-3 years ago when the main account was originally created, the product has not been touched until now. In a "training" class the instructor said we may ...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Subject | Author | Posted |
---|---|---|
04-30-2024 09:03 AM | ||
04-26-2024 04:04 AM | ||
04-11-2024 03:20 AM | ||
04-04-2024 11:19 PM | ||
02-22-2024 02:56 AM |