Benefits of Integrating Firepower and AMP for Endpoints
Integrating your AMP for Endpoints deployment with your system offers the following benefits:
-
Centralized Blocked Applications and Allowed Applications lists configured in AMP for Endpoints can determine verdicts for file SHAs sent from Firepower to the AMP cloud for disposition.
-
The system can import malware events detected by AMP for Endpoints into Secure Firewall Management Center so you can manage these events along with malware events generated by the system. Imported data for these events includes scans, malware detections, quarantines, blocked executions, and cloud recalls, as well as indications of compromise (IOCs) that management center displays for hosts that it monitors.
-
You can view file trajectory and other details in the AMP for Endpoints console.
Important | If you use a Cisco AMP Private Cloud, see limitations at AMP for Endpoints and AMP Private Cloud. |