Splunk® Supported Add-ons

Splunk Add-on for McAfee ePO Syslog

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Splunk Add-on for McAfee ePO Syslog

Version 1.1.0
Vendor Products
  • McAfee Endpoint ePO v5.10
  • McAfee Endpoint Security
    • v10.6.0
    • v10.6.1
    • v10.6.1.1607
    • v10.7.0
    • v10.7.0.1285
    • v10.7.0.3255
Visible in Splunk Web No. This add-on does not contain any views.

The Splunk Add-on for McAfee ePO Syslog lets a Splunk Enterprise administrator collect anti-virus information via Syslog. You can then directly analyze the data or use it as a contextual data feed to correlate with other security data in Splunk. This add-on provides the inputs and CIM-compatible knowledge to use with other Splunk Enterprise apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance.

Download the Splunk Add-on for McAfee ePO Syslog from Splunkbase.

For a summary of new features, fixed issues, and known issues, see Release Notes for the Splunk Add-on for McAfee ePO Syslog.

For information about installing and configuring the Splunk Add-on for McAfee, see Install the Splunk Add-on for McAfee ePO Syslog.

Last modified on 06 September, 2022
  NEXT
Hardware and software requirements for the Splunk Add-on for McAfee ePO Syslog

This documentation applies to the following versions of Splunk® Supported Add-ons: released


Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters