i would like to add prebuilt panels to Splunkadd-onforSymantecDLP's dedicated webpage.
This is my current Splunkadd-onforSymantecDLP's dedicated webpage.
I would like to have all the...
I have specified the following variables to extract from my SymantecDLP system and send them to Splunk.
Message = ID: $INCIDENT_ID$, Policy Violated: $POLICY$, Rules: $POLICY_RULES$, Count: $M...
I make sure the search results can return the results which is within 24h period as expected.
I am trying to use the prebuilt panel included with Splunkadd-onforSymantecDLP - "symantec...
In thesplunkbase it says "SplunkAdd-onforSymantec Endpoint Protection" TA's latest version 3.4.0 is compatible with CIM 4.x, whereas if we check in release notes, it s...
...host spd1agd01 and found that splunkforwarder was not installed,we installed but although we are not getting the results. We also checked at the following path: C:\Program Files (x86)\Symantec\Symantec...
...ound Below are our following findings/Actions. Splunkforwarder was not installed we installed it. We checked this path source = D:\Program Files (x86)\Symantec\Symantec Endpoint Protection M...
Is it only me or the following apps are not downloadable :
https://splunkbase.splunk.com/app/3454/
https://splunkbase.splunk.com/app/3453/
Is is the same behavior for you ? Anyone succeed t...
...version available onSplunkbase? If I want to upgrade to the most current version, would there be any issues if I replace the current TA (3.2.1) with the version from Splunkbase?
Thank you.
Hi @gcusello , We have installed and configured SplunkAddonforsymantec endpoint protection successfully. Splunk has started receiving logs (index=symantec) but we can see n...