{"id":936,"date":"2019-10-21T23:00:50","date_gmt":"2019-10-21T22:00:50","guid":{"rendered":"http:\/\/www.balajibandi.com\/?p=936"},"modified":"2019-10-24T11:13:14","modified_gmt":"2019-10-24T10:13:14","slug":"add-amp-feature-to-wsa-sma","status":"publish","type":"post","link":"https:\/\/www.balajibandi.com\/?p=936","title":{"rendered":"Add AMP Feature to WSA \/ SMA"},"content":{"rendered":"\n<p>AMP  &#8211; Advanced Malware Protection<\/p>\n\n\n\n<p>WSA &#8211;  Web Security Appliance ( Aka &#8211; Ironport)<\/p>\n\n\n\n<p>SMA &#8211;  Security Management Appliance ( Centralised Management to push policies geographically located WSA)<\/p>\n\n\n\n<p>Background Story &#8211; One of the Client place  &#8211; having major impact due to Webroot, keep having issue with proxy, not able to process some request due to Webroot bug, Cisco not have much influence here, The Only Option leave as a Cisco customer-  AMP is the solution, where cisco have Full control to diagnosis the issue.<\/p>\n\n\n\n<p>SMA &#8211;  11.5.1-115  &#8211; Current running version<\/p>\n\n\n\n<p>WSA &#8211;  11.5.2-020 for Web  &#8211; Current Running version<\/p>\n\n\n\n<p>Step 1 : Get the AMP License &#8211; either from smart License, only higher version only support smart license, so i have to contact cisco Licnese team to get feature keys.<\/p>\n\n\n\n<p>Step 2 : Apply the Feature keys individual kit. ( this only by login to each kit)<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"898\" height=\"650\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-2.png\" alt=\"\" class=\"wp-image-937\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-2.png 898w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-2-300x217.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-2-768x556.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-2-705x510.png 705w\" sizes=\"auto, (max-width: 898px) 100vw, 898px\" \/><figcaption> 3 &#8211; Enter the feature key and submit the key<\/figcaption><\/figure>\n\n\n\n<p>Step 3 &#8211; now you can see the feature keys for AMP ( due to confidential i have removed other information)<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"885\" height=\"363\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-3.png\" alt=\"\" class=\"wp-image-938\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-3.png 885w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-3-300x123.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-3-768x315.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-3-705x289.png 705w\" sizes=\"auto, (max-width: 885px) 100vw, 885px\" \/><\/figure>\n\n\n\n<p>Step 4 &#8211; Disable WebRoot and Enable AMP on WSA<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"608\" height=\"504\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-5.png\" alt=\"\" class=\"wp-image-940\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-5.png 608w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-5-300x249.png 300w\" sizes=\"auto, (max-width: 608px) 100vw, 608px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"354\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-6-1024x354.png\" alt=\"\" class=\"wp-image-941\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-6-1024x354.png 1024w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-6-300x104.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-6-768x265.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-6-705x243.png 705w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-6.png 1138w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"372\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-7-1024x372.png\" alt=\"\" class=\"wp-image-942\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-7-1024x372.png 1024w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-7-300x109.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-7-768x279.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-7-705x256.png 705w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-7.png 1878w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>Click Submit and commit the changes.<\/p>\n\n\n\n<p>Step 5 : we going to enable same on SMA &#8211; Enable AMP and Disable Webroot.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"436\" height=\"269\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-9.png\" alt=\"\" class=\"wp-image-945\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-9.png 436w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-9-300x185.png 300w\" sizes=\"auto, (max-width: 436px) 100vw, 436px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"806\" height=\"527\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-10.png\" alt=\"\" class=\"wp-image-946\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-10.png 806w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-10-300x196.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-10-768x502.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-10-705x461.png 705w\" sizes=\"auto, (max-width: 806px) 100vw, 806px\" \/><figcaption><br><br><\/figcaption><\/figure>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"975\" height=\"638\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-11.png\" alt=\"\" class=\"wp-image-947\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-11.png 975w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-11-300x196.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-11-768x503.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-11-705x461.png 705w\" sizes=\"auto, (max-width: 975px) 100vw, 975px\" \/><\/figure>\n\n\n\n<p>Click Submit and commit the changes.<\/p>\n\n\n\n<p>Step 6 : Make sure you configure AMP Enginer get updates from Internet automatically.<\/p>\n\n\n\n<p> Navigate to Security Services &gt; FileReputation and Analysis Under \u201cAdvancedMalwareProtection,\u201dclick\u201c Edit the GlobalSettings\u201d<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"527\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-12-1024x527.png\" alt=\"\" class=\"wp-image-948\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-12-1024x527.png 1024w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-12-300x154.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-12-768x395.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-12-705x363.png 705w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-12.png 1181w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>Note: By default, it will be &#8211;   on port tcp\/32137  (if you have External Perimeter blocking this port AMP will not get updates). &#8211; so change the port accordingly, i have changed to 443 port<\/p>\n\n\n\n<p>Save and commit the changes<\/p>\n\n\n\n<p>You can view the AMP in Global Policy  Under Access Polices<\/p>\n\n\n\n<p> Web Security Manager&gt;Access Policies you will need to configure Advanced Malware Protection under the Anti-Malware and Reputation Column. Click on the blue \u201cAdvanced Malware Protection&#8221;<\/p>\n\n\n\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"92\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-13-1024x92.png\" alt=\"\" class=\"wp-image-949\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-13-1024x92.png 1024w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-13-300x27.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-13-768x69.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-13-705x63.png 705w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-13.png 1117w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>Block instead of Monitoring ( Monitor not going to block)<br><\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"110\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-14-1024x110.png\" alt=\"\" class=\"wp-image-950\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-14-1024x110.png 1024w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-14-300x32.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-14-768x83.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-14-705x76.png 705w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-14.png 1263w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>Step 7 : you can view the reports on SMA<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"355\" height=\"550\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-16.png\" alt=\"\" class=\"wp-image-952\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-16.png 355w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-16-194x300.png 194w\" sizes=\"auto, (max-width: 355px) 100vw, 355px\" \/><\/figure>\n\n\n\n<p>Sample report like below :<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"661\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-15-1024x661.png\" alt=\"\" class=\"wp-image-951\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-15-1024x661.png 1024w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-15-300x194.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-15-768x495.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-15-705x455.png 705w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-15.png 1054w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>You can view-blocking from the user<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"147\" src=\"http:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-17-1024x147.png\" alt=\"\" class=\"wp-image-953\" srcset=\"https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-17-1024x147.png 1024w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-17-300x43.png 300w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-17-768x110.png 768w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-17-705x101.png 705w, https:\/\/www.balajibandi.com\/wp-content\/uploads\/2019\/10\/image-17.png 1141w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>I hope you enjoyed the document &#8212;-!<\/p>\n\n\n\n<p>Happy Labbbbbbbbbing! <\/p>\n\n\n\n<ul class=\"wp-block-gallery columns-0 is-cropped wp-block-gallery-1 is-layout-flex wp-block-gallery-is-layout-flex\"><\/ul>\n","protected":false},"excerpt":{"rendered":"<p>AMP &#8211; Advanced Malware Protection WSA &#8211; Web Security Appliance ( Aka &#8211; Ironport) SMA &#8211; Security Management Appliance ( Centralised Management to push policies geographically located WSA) Background Story &#8211; One of the Client place &#8211; having major impact due to Webroot, keep having issue with proxy, not able to process some request due [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,2],"tags":[],"class_list":["post-936","post","type-post","status-publish","format-standard","hentry","category-ccie-sec","category-cisco"],"_links":{"self":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/936","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=936"}],"version-history":[{"count":4,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/936\/revisions"}],"predecessor-version":[{"id":957,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/936\/revisions\/957"}],"wp:attachment":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=936"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=936"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=936"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}