Splunk® Supported Add-ons

Splunk Add-on for Symantec Endpoint Protection

Download manual as PDF

Download topic as PDF

Release notes for the Splunk Add-on for Symantec Endpoint Protection

Version 3.0.1 of the Splunk Add-on for Symantec Endpoint Protection was released on March 10, 2020.

Compatibility

Version 3.0.1 of the Splunk Add-on for Symantec Endpoint Protection is compatible with the following software, CIM versions, and platforms.

Splunk platform versions 7.0 or later
CIM 4.15.0
Platforms Windows for the data collection node
Vendor Products Symantec Endpoint Protection versions 14.0 to 14.2RU2

New features

Version 3.0.1 of the Splunk Add-on for Symantec Endpoint Protection has the following new features:

  • FIPs compatibility.
  • Support for new Vendor Product version 14.2RU1 and 14.2RU2.

Fixed issues

Version 3.0.1 of the Splunk Add-on for Symantec Endpoint Protection fixes the following (if any) issues.

Date resolved Issue number Description
2020-02-05 ADDON-21970 SEP: Transforms no longer match after upgrade to SEP 14.2 RU1

Known issues

Version 3.0.1 of the Splunk Add-on for Symantec Endpoint Protection contains the following (if any) known issues.

Date filed Issue number Description
2020-03-02 ADDON-25447 The value of Event_Description field is trimmed after single quote for sourcetype symantec:ep:admin:file for 14.2RU2

Third-party software attributions

Version 3.0.1 of the Splunk Add-on for Symantec Endpoint Protection incorporates the following:

Last modified on 20 March, 2020
PREVIOUS
Source types for the Splunk Add-on for Symantec Endpoint Protection
  NEXT
Release history for the Splunk Add-on for Symantec Endpoint Protection

This documentation applies to the following versions of Splunk® Supported Add-ons: released


Was this documentation topic helpful?

Enter your email address, and someone from the documentation team will respond to you:

Please provide your comments here. Ask a question or make a suggestion.

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters