Applies To: McAfee ePolicy Orchestrator
The McAfee ePolicy Orchestrator (McAfee ePO) platform enables centralized policy management and enforcement for your endpoints and enterprise security products. With McAfee ePO software, IT administrators can unify security management across endpoints, networks, data, and compliance solutions from McAfee and third-party solutions.
EventTracker is an enterprise-class SIEM platform that integrates with McAfee ePO and allow to track, monitor, create reports and trigger security event alerts for the event logs/ alerts that are generated by McAfee ePolicy orchestrator. Furthermore, EventTracker also provides a visual representation of active alerts and security events via “Dashboards”.
EventTracker Knowledge Pack for McAfee ePolicy Orchestrator allows you to monitor the following components:-
EventTracker Enterprise monitors all the McAfee ePO events, some of them are given below.
Once events are received in to EventTracker Reports, Knowledge Objects, Categories and Dashboards can be configured into EventTracker.
Once McAfee ePolicy Orchestrator is configured to deliver events to EventTracker Manager; alerts, dashboards and reports can be configured into EventTracker.
The configuration details are consistent with EventTracker version 8.X and later, and McAfee ePolicy Orchestrator 5.x.
To configure McAfee ePolicy Orchestrator(ePO) to send logs to EventTracker, refer to the How-to Guide.
For more information please refer to the McAfee ePolicy Orchestrator(ePO) Integration guide