search cancel

SEDR does not receive events from Endpoint Cloud

book

Article ID: 175599

calendar_today

Updated On:

Products

Endpoint Detection and Response

Issue/Introduction

Detections from SEP cloud do not show in the Symantec Endpoint Detection and Response (SEDR) appliance.

Cause

When SEDR fetched events from SEP cloud, the events it received had a mismatched schema for file data.

Resolution

A schema change was made in SEDR 4.2 allowing SEP cloud events to be properly displayed.