×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
flynhi66
New Member
Member since: ‎12-10-2012
‎11-07-2020
Community Statistics
Posts 1
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎12-10-2012
View All

Splunk Add-on for Symantec Endpoint Protection sto...

by in All Apps and Add-ons
‎08-15-2017 11:31 AM
‎08-15-2017 11:31 AM
We have a dashboard created using the add-on above in subject that worked fine until we upgraded SEP to SEP v14. I noticed that the index (Symantec) used is not being logged to. Updated SEP of the version 14 server to log to syslog and now see those entries coming in from the SEPM v.14 host as syslog. Not sure what needs to change (clear that host is logging to splunk but data is not being transformed and not being logged to symantec index. Looking to see if this should work on SEP14 and if so, how to modify so that queries used for panels in dashboard work. Thanks! ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎11-07-2020 12:31 PM