Verifying Symantec Event Agent operation