Late Breaking News for SEDR 4.6

book

Article ID: 209809

calendar_today

Updated On:

Products

Endpoint Detection and Response

Issue/Introduction

The release notes for Symantec Endpoint Detection and Response (SEDR) 4.6 are available here: https://techdocs.broadcom.com/content/dam/broadcom/techdocs/symantec-security-software/endpoint-security-and-management/endpoint-detection-and-response/generated-pdfs/sedr_release_notes_4.6.pdf

Cause

New issues discovered after the 4.6 release are listed below.

Resolution

Upgrade to Symantec EDR 4.6.5 for Mac agent support

Symantec EDR 4.6.5 supports Mac agent endpoint enrollment when you upgrade to SEP 14.3 RU2.  After the upgrades to Symantec EDR 4.6.5 and SEP 14.3 RU2, Mac endpoints can forward the following event types to Symantec EDR:

  • 8001:  Process Event

  • 8003:  File Event

  • 8016:  Startup Application Configuration Change

For more information about supported functionality, see About Mac agent support.

Important information about upgrading

_____________________________________________________________________

Adding groups to SEPM Group Inclusions never completes

After upgrading the Appliance to version 4.5.0, it is not possible to include SEPM groups for EDR to manage. The groups are selected and the configuration is saved, but the groups are never included, and the screen remains processing.  See the following KB for more information.

Adding groups to SEPM Group Inclusions never completes