Powerful threat prediction, prevention, detection, and response along with compliance in a scalable, simple managed solution.
All-in-one networking solution that combines network connectivity, agility, security, and compliance in an affordable managed solution.
Accelerate business growth through our award-winning partner program.
Applies To: Cisco IronPort ESA Version 13.0 and later
The Cisco Email Security Appliance (ESA) is an email security gateway product. It is designed to detect and block a wide variety of email-borne threats, such as malware, spam and phishing attempts.
EventTracker, when integrated with Cisco ESA, collects logs from Cisco ESA and creates detailed reports, alerts, dashboards and saved searches. These attributes of EventTracker helps users to view the most critical and important information on a single platform.
Reports contain detailed overview of the activities like, incoming message summary, (Data, Loss and Protection) DLP and AMP (Advance Malware Protection) event summary, malicious or suspicious URL’s summary, and many more.
Alerts occur as soon as any critical events are triggered by Cisco ESA. With alerts, users will be able to get real time occurrences of events such as, DLP or AMP message detection, directly into their email services.
EventTracker monitors the below mentioned events of Cisco ESA:
Once Cisco ESA is configured to deliver events to EventTracker Manager; alerts, dashboards, and reports can be configured into EventTracker.
The configuration details are consistent with EventTracker version 9.x and later, and Cisco ESA version 13.0 and later.
To configure Cisco ESA to send logs to EventTracker, refer the How to Guide.
For more information please refer the Integration guide