Re: AMP Identity Synchronization Activation

Quintin.Mayo · ‎04-26-2018

Hi,

We purchased the AMP application when reading the installation documentation it states to open a TAC case to have the Identity synchronization activated. I can't find anything on the Internet to confirm this. Can someone clarify the steps necessary to activate the Identity synchronization service? Any assistance would be greatly appreciated.

Device Make/Model: AMP

Device IOS image/Firmware version: 6.0.9.10685

Console Version: 5.4.20180424

"Q"

Bob Hemenway · ‎04-26-2018

I did this to help reduce duplicate hostnames. You just open a case with TAC and tell them you want this feature and then it will start showing up in your policy settings. The current console refers to this as Identity Persistence. This is an older document but it explains what this does:

https://www.cisco.com/c/en/us/support/docs/security/advanced-malware-protection-endpoints/200318-Deployment-of-Cisco-AMP-for-Endpoints-wi.html

Jetsy Mathew · ‎04-26-2018

Hello Quintin.Mayo

You have to enable the Identity Sync only if you have such environment . Identity Persistence feature on Cisco AMP for Endpoints allows a computer object UUID (Universally Unique Identifier) to be reused when a computer or virtual machine is reimaged or redeployed. This prevents creating duplicate computer objects in a dashboard, and maintains contiguous data for those computer objects. This also helps to maintain the endpoint connectors, provide continuity of data, and keep the license count in check.

If you would like to enable it then please open a TAC case with your business account name and business GUID so that we can enable it from the backend. Later we will provide you the document on how to deploy the same.

Regards

Jetsy