Table of Contents:
This article covers how to configure Symantec Endpoint project configuration on-premises.
Take the following steps to configure your Symantec Endpoint Protection
Procedure
- Log in to your Symantec Endpoint Protection Manager system.
- In the left pane, click the Admin icon.
- In the bottom of the View Servers pane, click Servers.
- In the View Servers pane, click Local Site.
- In the Tasks pane, click Configure External Logging.
- From the Generals tab, select the Enable Transmission of Logs to a Syslog Server check box.
- In the Syslog Server field, type the IP address of Google Chronicle Forwarder that you want to parse the logs.
- In the UDP Destination Port field, type “11644”.
- In the Log Facility field, type Local6.
- In the Log Filter tab, under Management Server Logs, select the Audit Logs check box.
- In the Client Log pane, select the Security Logs check box.
- In the Client Log pane, select the Risks check box.
- Click OK.
Comments
0 comments
Please sign in to leave a comment.