This makes the listening port reachable by the Hosts then configure the integration to listen on 0.0.0.0 so that it will accept
If the Symantec management server and Elastic Agent are running on different.Enable this integration with the UDP input.If a specific SEP log type is detected then event.provider is set (e.g. The data is mapped toĮCS fields where applicable and the remaining fields are written under Headers are allowed and will be parsed if present. The log message is expected to be in CSV format. To receive logs sent by SEP over syslog or read logs exported to a text file.
This integration is for Symantec Endpoint Protection (SEP) logs.
0 kommentar(er)
