Wider attack surface coverage powered by hundreds of integrations and deeper threat visibility powered by thousands of detections.
Version: Symantec-Endpoint-Protection Version 12.1.6 to 14.
Symantec Endpoint Protection, developed by Symantec Corporation, is an antivirus and personal firewall software for centrally managed corporate environments providing security for both servers and workstations. Netsurion support for Symantec’s Antivirus and IDS/IPS events is now available. Symantec’s security policy will consist of specific rules enabled with logging used to capture and send to Netsurion. These events will be auto-identified, if enabled, and parsed into the Netsurion report tables for later review.
Netsurion Data Source Integration for Symantec Endpoint Protection allows you to monitor the following components:-
Once Symantec Endpoint Protection is configured to deliver events to Netsurion Manager; alerts, dashboards and reports can be configured into Netsurion.
Some of the Data Source Integrations available in Netsurion are listed below.
The configuration details in this guide are consistent with Netsurion version 8.X and later, Symantec Endpoint Protection version 12.1.6 to 14.
Download Integration Guide for more information.