This add-on provides the inputs and CIM-compatible knowledge to use with other Splunk Enterprise apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance.ĭownload the Splunk Add-on for McAfee ePO Syslog from Splunkbase.įor a summary of new features, fixed issues, and known issues, see Release Notes for the Splunk Add-on for McAfee ePO Syslog.įor information about installing and configuring the Splunk Add-on for McAfee, see Install the Splunk Add-on for McAfee ePO Syslog. The System Tagger for McAfee ePO add-on allows Splunk users who are also using McAfee ePolicy Orchestrator (ePO) for endpoint security management to apply. You can then directly analyze the data or use it as a contextual data feed to correlate with other security data in Splunk. The Splunk Add-on for McAfee ePO Syslog lets a Splunk Enterprise administrator collect anti-virus information via Syslog. This app integrates with an instance of McAfee ESM to perform investigative and ingestion actions. Splunk Add-on for McAfee ePO Syslog Version
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |