SEP: Scan stopped- This alert is generated when scan is stopped.SEP: Remediation action pending- This alert is generated when remediation action is pending.SEP: Remediation action failed- This alert is generated when remediation action fails.SEP: No update found- This alert is generated when no update are to be found.SEP: Live update started- This alert is generated when live update has been started.Compliance - Virus detected, Web attack blocked, Virus deletion failed, At Risk Computers and Confirmed Risks.Security - New Risks Detected in the Network, TruScan Proactive Threat Detection Over Time, TruScan Proactive Threat Distribution, Detected Risks Not Confirmed and Permitted Applications.Operations - Agent created and deleted, Application blocked, Auto-protect disabled, Device disabled, Intrusion prevention disabled and Security risk detected.These events will be auto-identified, if enabled, and parsed into the EventTracker report tables for later review.ĮventTracker Knowledge Pack for Symantec Endpoint Protection allows you to monitor the following components:. Symantec’s security policy will consist of specific rules enabled with logging used to capture and send to EventTracker. EventTracker support for Symantec’s Antivirus and IDS/IPS events is now available. Symantec Endpoint Protection, developed by Symantec Corporation, is an antivirus and personal firewall software for centrally managed corporate environments providing security for both servers and workstations. Applies To: Symantec-Endpoint-Protection Version 12.1.6 to 14 Overview
0 kommentar(er)
