In thesplunkbase it says "SplunkAdd-onforSymantecEndpointProtection" TA's latest version 3.4.0 is compatible with CIM 4.x, whereas if we check in release notes, it s...
...host spd1agd01 and found that splunkforwarder was not installed,we installed but although we are not getting the results. We also checked at the following path: C:\Program Files (x86)\Symantec\Symantec...
...ound Below are our following findings/Actions. Splunkforwarder was not installed we installed it. We checked this path source = D:\Program Files (x86)\Symantec\SymantecEndpointProtection M...
...ould be improved.
I'm trying to ingest events forthesymantecendpointprotection app via syslog and below is a diagram of my current setup.
The problem is that the dashboards & s...
...version available onSplunkbase? If I want to upgrade to the most current version, would there be any issues if I replace the current TA (3.2.1) with the version from Splunkbase?
Thank you.
Hi @gcusello , We have installed and configured SplunkAddonforsymantecendpointprotection successfully. Splunk has started receiving logs (index=symantec) but we can see n...
..._TA_flowfix)
SplunkAdd-onfor Microsoft SQL Server
SplunkAdd-onfor Unix and Linux
SplunkAdd-onfor Oracle Database
SplunkAdd-onfor ServiceNow
SplunkAdd-onforSymantecEndpointProtectionSplunkAdd...
[ VERY URGENT ]
Hi all, Does anyone has knowledge about how to push symantec antivirus logs to splunk or pull logs from symantec antivirus.
step - by - step process to d...