search cancel

SEDR does not display 8007 events from SEP 14.3.x clients

book

Article ID: 200531

calendar_today

Updated On:

Products

Endpoint Detection and Response

Issue/Introduction

Searches on Symantec Endpoint Detection and Response (SEDR) no longer display 8007 Network events for clients that are running Symantec Endpoint Protection (SEP) 14.3.x.

Cause

The 8007 events from SEP 14.3.x are missing some fields which prevents the SEDR UI from displaying these events.

Environment

Release :

Component :

Resolution

Broadcom Engineering resolved this issue in version 4.5.0. Please update to the latest build to receive this fix.*

*Workaround: While the 8007 events from SEP 14.3.x are not displayed in the GUI, they are available when exporting a search or when searching using the API.