Forum Discussion
How to configure Symantec endpoint protection manager logs using azure sentinel data connectors?
Hi team, I am not able to add Symantec Endpoint Protection Manager logs to Sentinel. Can anyone help me on this.
Symantec have instructions: https://support.symantec.com/en_US/article.HOWTO130011.html
You need to select the same Log analytics workspace to copy the logs to that you open with Sentinel.
CliveWatson
Microsoft
Microsoft
Symantec have instructions: https://support.symantec.com/en_US/article.HOWTO130011.html
You need to select the same Log analytics workspace to copy the logs to that you open with Sentinel.
CliveWatson This is a 404 link, I can't even access this doc when logged into the broadcom site. Do you have an updated link by any change?
- CliveWatsonDoes this work? https://github.com/Azure/Azure-Sentinel
- No this did not give me much. I am trying to figure out how to actually forward the logs. I also noticed you do not have a SEP connector yet. I see one in the repo but it's not active on our instance.
