This document describes the method to install and configure the Advanced Malware Protection (AMP) module on an enduser system using AnyConnect.

Similar documents
Workspot Configuration Guide for the Cisco Adaptive Security Appliance

Sage Grant Management System Requirements

1. Server Microsoft FEP Instalation

BITDEFENDER ENDPOINT SECURITY TOOLS



Cloud Services ADM. Agent Deployment Guide

DOE VPN Client Installation and Setup Guide March 2011

Configuring a Softphone for Windows for Virtual Contact Center

Citrix EdgeSight for Load Testing Installation Guide. Citrix EdgeSight for Load Testing 3.5

VoIP Infrastructure Upgrade Desktop. User Group March 2014

Active Directory Management. Agent Deployment Guide

Remote Deposit Capture Installation Guide

Citrix EdgeSight for Load Testing Installation Guide. Citrix EdgeSight for Load Testing 3.8

CONFIGURING MICROSOFT SQL SERVER REPORTING SERVICES

TABLE OF CONTENTS NETWORK SECURITY 2...1

Pearl Echo Installation Checklist

NETWRIX IDENTITY MANAGEMENT SUITE

Core Protection for Virtual Machines 1

Upgrading Client Security and Policy Manager in 4 easy steps

Installation Process

MARSHAL REPORTING CONSOLE VERSION 2.5 INSTALLATION GUIDE

SecureClient Central Installation Guide. September 2014

INSTALLING MICROSOFT SQL SERVER AND CONFIGURING REPORTING SERVICES

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

Hardware/Software Requirements For Self-Hosting Multi Server

Enterprise Deployment

This document details the procedure for installing Layer8 software agents and reporting dashboards.

NETWRIX CHANGE NOTIFIER

Active Directory Management. Agent Deployment Guide

Issue Tracking Anywhere Installation Guide

How To Install An Aneka Cloud On A Windows 7 Computer (For Free)

Microsoft Office Outlook 2013: Part 1

VCCC Appliance VMware Server Installation Guide

NetWrix USB Blocker Version 3.6 Quick Start Guide

AVG File Server. User Manual. Document revision ( )

Quick Deployment Step-by-step instructions to deploy Oracle Big Data Lite Virtual Machine

Secure Access Using VPN

Configure ISE Version 1.4 Posture with Microsoft WSUS

Cisco AnyConnect Secure Mobility Solution Guide

For Splunk Universal Forwarder and Splunk Cloud

Table of Contents. Introduction...9. Installation Program Tour The Program Components...10 Main Program Features...11

Deploying Cisco ASA VPN Solutions Exam.

Release Notes for Websense Security v7.2

VMware Horizon FLEX User Guide

Installing and Administering VMware vsphere Update Manager

How to Install MS SQL Server Express

How To Install Sedar On A Workstation

Web VTS Installation Guide. Copyright SiiTech Inc. All rights reserved.

Quick Start Guide for VMware and Windows 7

Server Installation Procedure - Load Balanced Environment

Getting Started with Symantec Endpoint Protection

How To Set Up A Firewall Enterprise, Multi Firewall Edition And Virtual Firewall

VMware Horizon FLEX User Guide

Contents. Introduction. Prerequisites. Requirements. Components Used

Freshservice Discovery Probe User Guide

Data Collection Agent for Active Directory

When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

Citrix EdgeSight Installation Guide. Citrix EdgeSight for Endpoints 5.3 Citrix EdgeSight for XenApp 5.3

User Installation Guide

Installation Guide. Release Management for Visual Studio 2013

NSi Mobile Installation Guide. Version 6.2

Configuring Bria 3 Mac for Virtual Contact Center

Contents. VPN Instructions. VPN Instructions... 1

VEEAM ONE 8 RELEASE NOTES

StruxureWare Data Center Expert Release Notes

Installation and Deployment

Implementing Core Cisco ASA Security (SASAC)

Managing Enterprise Security with Cisco Security Manager

F-Secure Internet Gatekeeper Virtual Appliance

Kaseya IT Automation Framework

NETWRIX WINDOWS SERVER CHANGE REPORTER

Forcepoint Sidewinder, Virtual Appliance Evaluation for Desktop. Installation Guide 8.x. Revision A

Resolving H202 Errors (INTERNAL)

To participate in the hands-on labs in this class, you need to bring a laptop computer with the following:

Release Notes for Websense Web Endpoint (32- and 64-bit OS)

BitDefender Security for Exchange

Abila Grant Management. System Requirements

Prerequisites Guide. Version 4.0, Rev. 1

Tivoli Endpoint Manager for Remote Control Version 8 Release 2. User s Guide

VMware Horizon FLEX User Guide

StruxureWare Data Center Expert Release Notes

ZyWALL OTPv2 Support Notes

Horizon Client Workstation Specifications and Deployment

msuite5 & mdesign Installation Prerequisites

Evaluating the Cisco ASA Adaptive Security Appliance VPN Subsystem Architecture

e-config Data Migration Guidelines Version 1.1 Author: e-config Team Owner: e-config Team

GRAVITYZONE UNIFIED SECURITY MANAGEMENT

Cisco AnyConnect Client Installation Guide

Connecting to Remote Desktop Windows Users

Storage Sync for Hyper-V. Installation Guide for Microsoft Hyper-V

McAfee Endpoint Security Software

NTP Software File Auditor for Windows Edition

ION EEM 3.8 Server Preparation

The purpose of this document is to guide you through the installation and configuration of a new ShipGear installation.

ClickOnce Deployment Notes

Grant Management. System Requirements

Minimum Computer System Requirements

Microsoft Dynamics SL 7.0 System Requirements Guide

Remote Deposit Capture Installation Guide

Transcription:

Contents Introduction Prerequisites Requirements Components Used AnyConnect deployment for AMP Enabler through ASA Step 1: Configuring Anyconnect AMP Enabler Client profile Step 2: Edit the Group-Policy to Download the AnyConnect AMP Enabler Step 3: Download the FireAMP Policy Step 4: Download Web Security Client Profile Step 5: Connect with AnyConnect and Verify the Installation of the Module Step 6: Verify the VPN Connection and the AMP Enabler Step 7: Check AnyConnect and Verify If Everything is Installed Step 8: Test with an Eicar String Contained in a zip File in a Computer Step 9: Deployment Summary Step 10: Thread Detection Verification Additional Information Related Document Related Cisco Support Community Discussions Introduction This document describes the method to install and configure the Advanced Malware Protection (AMP) module on an enduser system using AnyConnect. The AnyConnect AMP Enabler is used as a medium for deploying the AMP for Endpoints. It pushes the AMP for Endpoints software to a subset of endpoints from a server hosted locally within the enterprise and installs AMP services to its existing user base. This approach provides AnyConnect user base administrators with an additional security agent that detects potential malware threats happening in the network, removes those threats, and protects the enterprise from compromise. It saves bandwidth and time taken to download, requires no changes on the portal side, and can be done without authentication credentials being sent to the endpoints. Prerequisites Requirements Anyconnect Secure Mobility Client version 4.x FireAMP / AMP for Endpoints AnyConnect Plus / Apex Licenses ASDM version 7.3.2 or higher Components Used

The information in this document is based on these software and hardware versions: Adaptive Security Appliance (ASA) 5525 with software version 9.5.1. Anyconnect Secure Mobility Client 4.2.00096 on Windows 7 Professional 64-bit. ASDM version 7.5.1(112). The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command. AnyConnect deployment for AMP Enabler through ASA The steps involved in configuration are as follows: Configure Anyconnect AMP Enabler client profile. Edit Anyconnect VPN group policy and download AMP Enabler Service Profile. Edit AMP Profile to get the configuration from a web server. Verify the installation on the user machine. Step 1: Configuring Anyconnect AMP Enabler Client profile Navigate to Configuration > Remove Access VPN > Network (Client) Access > Anyconnect Client Profile Add AMP Enabler Service Profile.

Step 2: Edit the Group-Policy to Download the AnyConnect AMP Enabler Navigate to Configuration > Remove Access VPN > Group Policies > Edit. Add AMP Enabler Service Profile. Step 3: Download the FireAMP Policy Note: Before proceed, check if your system meets the requirements for the AMP of Endpoints Windows Connector. System Requirements for AMP for Endpoints Windows Connector The following are the minimum system requirements for the FireAMP Connector based on the Windows operating system. The FireAMP Connector supports both 32-bit and 64-bit versions of these operating systems. Operating System Windows XP with Service Pack 3 or later Windows Vista with Service Pack 2 or later Processor 500 MHz or faster 1 GHz or faster Memory 256 MB RAM 512 MB RAM Disk Space, Cloud Only Mode Cloud-only mode Cloud-only mode Disk Space Windows 7 1 GHz or faster 1 GB RAM

Windows 8 and 8.1 (requires FireAMP Connector 3.1.4 or later) Windows Server 2003 Windows Server 2008 1 GHz or faster 1 GHz or faster 2 GHz or faster Windows Server 2012 (requires 2 GHz or faster FireAMP Connector 3.1.9 or later) 512 MB RAM 512 MB RAM 2 GB RAM 2 GB RAM Cloud-only mode Cloud-only mode Cloud-only mode hard disk space Cloud only mode Cloud only mode hard disk space hard disk space 1 GB available hard disk space The Download Connector page allows either download the install packages for each type of FireAMP connector or copy the URL where they can be downloaded. These package can be placed on a network share or distributed via management software. The download URL can be emailed to users to allow them to download and install it themselves which can be downloaded for remote users. Select a Group Audit Only: Used when you are still learning about the product and want to install it without any impact to your existing systems. Protect: Used during normal operation and you want FireAMP to quarantine a file. Triage: Used when you have a known or suspected infected machine. Server: Used when you are installing a connector on standard windows server. Domain Controller: Used when you are installing a connector on Windows Domain Controller. Features Flash Scan on Install: Scan process will run during the installation. This scan is cloud-based and will require a network connection, it is relatively quick to perform.

Redistributable: This option downloads 32-bit and 64-bit installers in one single package. Note: By default, it downloads a small (~500 KB) bootstrapper file to install the FireAMP Connector. This executable determines if the computer is running a 32 or 64-bit operating system and downloads and installs the appropriate version of the FireAMP Connector. However for VPN purpose, you should choose to download a redistributable installer. This is a 30 MB file that contains both the 32 and 64-bit installers. This file can be placed on a network share or pushed to all the computers in a group via a tool like System Center Configuration Manager in order to install the FireAMP Connector on multiple computers. The bootstrapper and redistributable installer also both contain a policy.xml file that is used as a configuration file for the install. To download the connector, navigate to Management > Download Connector. Then select type, and Download FireAMP (Windows, Android, Mac, Linux). In this case we selected the Audit option for the Download Connector and the installation for Windows Machine. Note: Downloading this file generates an.exe file called in our case

Audit_FireAMPSetup.exe Step 4: Download Web Security Client Profile Go back to AMP Profile created before on the ASA (Step 1), edit AMP Enabler Profile: 1. For AMP Mode, select Install AMP Enabler. 2. On Windows Installer field, add the IP for the web server and the file for the FireAMP. 3. Windows Options are optional. Click OK and apply the changes.

Step 5: Connect with AnyConnect and Verify the Installation of the Module When Anyconnect VPN users connect, ASA pushes the Anyconnect AMP Enabler module through VPN. For already logged in users, it s recommended to log off and then log in back for the functionality to be enabled. Step 6: Verify the VPN Connection and the AMP Enabler Verify if the VPN is connected and the AMP Enabler collects configuration from the web server. Step 7: Check AnyConnect and Verify If Everything is Installed Once the VPN is connected and the configuration from the web server is installed, check AnyConnect and verify everything is installed properly.

Step 8: Test with an Eicar String Contained in a zip File in a Computer Test with an Eicar string contained in a zip file in a computer to verify if everything is working as expected. Step 9: Deployment Summary This page will show you a list of successful and failed FireAMP connector installs as well as those currently in progress. You can go to Management > Deployment Summary.

Step 10: Thread Detection Verification This page shows you a list of threads blocked by the FireAMP connector and also the machines impacted. You can go to the Dashboard. Additional Information Incompatible Software for FireAMP Windows Connector: 1. Zone Alarm by Check Point 2. Carbon Black 3. Res Software AppGuard Related Document Configure AMP Enabler

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information