Skip to content
/ amp-connector-check Public

Check all endpoints to see if Cisco AMP connector was uninstalled

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

derak/amp-connector-check

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

README.md

README.md

 
 

amp_api.py

amp_api.py

 
 

config

config

 
 

master_endpoint_hostnames.txt

master_endpoint_hostnames.txt

 
 

Repository files navigation

amp-connector-check

published

Check all endpoints to see if Cisco AMP connector was uninstalled

Usage

  • Add your Client ID and API Key to the config file. Instructions for getting these can be found here: https://api-docs.amp.cisco.com/api_resources?api_host=api.amp.cisco.com&api_version=v1
  • Add master list of hostnames to master_endpoint_hostnames.txt. If one of these hostnames does not show up in the list of hostnames queried from the AMP API, then it will alert. It will also alert if it sees one of the connector statuses is inactive.
  • Run script
python amp_api.py

Future Improvements

  • Get master hostname list from Active Directory
  • Send email when alerting
  • Put in Docker continer
  • Schedule runs, or keep persistent using supervisord
  • Splunk integration
  • Add support for Cisco Umbrella Roaming Client

About

Check all endpoints to see if Cisco AMP connector was uninstalled

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages