Contact sales
Details

This workflow appears in the pivot menu and will move the endpoint identified by the provided observable to a device group in Cisco Secure Endpoint.

Description

This workflow appears in the pivot menu and will move the endpoint identified by the provided observable to a device group in Cisco Secure Endpoint. Supported observables: hostname, IP address, Secure Endpoint computer GUID

Target: Secure Endpoint - v1

Steps:

  • Make sure the observable is supported and set the corresponding local variable
  • If the observable wasn't a computer GUID, try getting a GUID from Secure Endpoint
  • Attempt to locate the group to get its ID
  • Move the computer to the group
Required targets

This workflow requires the following targets to be available before it can be run.

Integration targets

  • Secure Endpoint
About
Author
Cisco
Version
v1.0
Integration
Average rating
No ratings yet
Authorship
Cisco Managed
Contact and support information
https://support.cisco.com
External links

Content Licensing

Developer Community

Related workflows
Logo for Secure Endpoint
Cisco Secure Endpoint - Remove Inactive Endpoints
Cisco Managed
This workflow looks for endpoints in Cisco Secure Endpoint that have been inactive for a specified number of days.
Learn more
Logo for Secure Endpoint
Cisco Secure Endpoint - Host Isolation with Tier 2 Approval
Cisco Managed
This workflow appears in the pivot menu and allows you to request approval to isolate a host using Cisco Secure Endpoint.
Pivot Menu
Learn more
Logo for Secure Endpoint
Cisco Secure Endpoint - Isolate Hosts
Cisco Managed
This incident response workflow allows you to isolate hosts involved in an incident using Cisco Secure Endpoint from a playbook or using an automation rule.
Learn more
Logo for Secure Endpoint
Cisco Secure Endpoint - Un-Isolate Hosts
Cisco Managed
This incident response workflow allows you to un-isolate hosts involved in an incident using Cisco Secure Endpoint from a playbook or using an automation rule.
Learn more
Logo for Secure Endpoint
Cisco Secure Endpoint - Get Vulnerability Summary for Assets
Cisco Managed
This incident response workflow fetches vulnerability information from Cisco Secure Endpoint for assets involved in an incident when triggered from a playbook or using an automation rule.
Learn more
Logo for Secure Endpoint
Cisco Secure Endpoint - Move Computers to Group
Cisco Managed
This incident response workflow allows you to move computers to a group in Cisco Secure Endpoint from a playbook or using an automation rule.
Incident Response
Learn more
Logo for Secure Endpoint
Cisco Secure Endpoint - Add Hashes to Simple Custom Detections
Cisco Managed
This incident response workflow allows you to add hashes involved in an incident to a simple custom detection list in Cisco Secure Endpoint through a playbook or using an automation rule.
Incident Response
Learn more
Logo for Secure Endpoint
Cisco Secure Endpoint - Remove Hash from Simple Custom Detection
Cisco Managed
This incident response workflow allows you to remove hashes involved in an incident from a simple custom detection list in Cisco Secure Endpoint through a playbook or using an automation rule.
Incident Response
Learn more