Latest Version 3.4.1
January 5, 2023
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Splunk Add-on for Symantec Endpoint Protection
Use the Splunk Add-on for Symantec Endpoint Protection (SEP) to collect SEP server and client activity logs from:
Built by
Compatibility
Not Available
Platform Version: 10.0, 9.4, 9.3, 9.2, 9.1, 9.0, 8.2
CIM Version: 5.x
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported addon
Ranking
#42
in Security, Fraud & Compliance
#45
in IT Operations
Use the Splunk Add-on for Symantec Endpoint Protection (SEP) to collect SEP server and client activity logs from:
- Symantec Endpoint Protection Manager dump files
- Syslog, using Splunk forwarders and Splunk Connect for Syslog
You can collect the following log files:
- Server Administration
- Application and Device Control
- Server Client
- Server Policy
- Server System
- Client Packet
- Client Proactive Threat
- Client Risk
- Client Scan
- Client Security
- Client System
- Client Traffic
Categories
Created By
Splunk LLC
Type
addon
Downloads
44,848
Licensing
Splunk Answers
Resources
Log in to report this app listing