Can automated notification be sent via syslog (or directly from Enforce) if a enforce console user has manually disabled an endpoint agent ?

search cancel

Can automated notification be sent via syslog (or directly from Enforce) if a enforce console user has manually disabled an endpoint agent ?

book

Article ID: 175094

calendar_today

Updated On:

Products

Data Loss Prevention Endpoint Prevent Data Loss Prevention Enforce

Issue/Introduction

Is it feasible in Symantec DLP to send an automated notification ( to a defined group of recipients) via Splunk (or directly from Enforce) if a DLP administrator has manually disabled an endpoint agent?

Resolution

Currently, we don't have a function to report endpoint events to Syslog.

Feedback

thumb_up Yes

thumb_down No