Events from Endpoint Protection Manager using Embedded DB do not show in Endpoint Detection and Response.

search cancel

Events from Endpoint Protection Manager using Embedded DB do not show in Endpoint Detection and Response.

book

Article ID: 176070

calendar_today

Updated On:

Products

Endpoint Detection and Response

Issue/Introduction

Events from the Symantec Endpoint Protection Manager (SEPM) using Embedded database do not show in Symantec Endpoint Detection and Response (SEDR).

For example, type_id 4123 (Endpoint File Detection) is not shown on SEDR web console even if Symantec Endpoint Protection (SEP) client detected EICAR file.

Environment

SEDR version is 4.1 or 4.2.x
SEPM is non-English, localized build
SEPM uses embedded database

Resolution

Download the fixed version of "Synapse Log Collector for SEPM Embedded DB" in [Related Attachments] field of this document and install.

Note: You need to uninstall existing Log Collector first then install the fixed version of Log Collector and configure.

Attachments

SEPMLogCollector.zip get_app

Feedback

thumb_up Yes

thumb_down No