Wider attack surface coverage powered by hundreds of integrations and deeper threat visibility powered by thousands of detections.
Version: Symantec DLP 14.5 and Above Version
The Symantec Data Loss Prevention Enforce Server is the central management platform that enables you to define, deploy, and enforce data loss prevention and security policies. The Enforce Server administration console provides a centralized, web-based interface for deploying detection servers, authoring policies, remediating incidents, and managing the system.
Netsurion integrates with Symantec DLP to capture the logs triggered for policy violations by the user. It also helps to visualize the policy violation and audit activities (policy changes, system management) happening on Symantec DLP. It will trigger the alerts whenever the user violates any policies. Reports will give you the details about audit activities and policy violation.
Syslog messages from Symantec DLP can be forwarded to Netsurion Enterprise and based on these logs, alerts and reports can be configured in Netsurion.
Netsurion Data Source Integration for Symantec DLP allows you to monitor the following components: -
Once Symantec DLP is configured to deliver events to Netsurion Manager; Knowledge objects and reports can be configured into Netsurion .
Some of the Data Source Integrations available in Netsurion are listed below.
The configuration details in this guide are consistent with Netsurion version 9.x and later, and Symantec DLP 14.5 and above version.
Download Integration guide for more information.