Benefits of Integrating Firepower and Secure Endpoint

Integrating your Secure Endpoint deployment with your system offers the following benefits:

  • Centralized Blocked Applications and Allowed Applications lists configured in Secure Endpoint can determine verdicts for file SHAs sent from Firepower to the AMP cloud for disposition.

    See Centralized File Lists from Secure Endpoint.

  • The system can import malware events detected by Secure Endpoint into Secure Firewall Management Center so you can manage these events along with malware events generated by the system. Imported data for these events includes scans, malware detections, quarantines, blocked executions, and cloud recalls, as well as indications of compromise (IOCs) that management center displays for hosts that it monitors.

  • You can view file trajectory and other details in the Secure Endpoint console.

Important

If you use a Cisco AMP Private Cloud, see limitations at Secure Endpoint and AMP Private Cloud.