Monitoring The Health of Symantec Endpoint Protection Using SOLVE

 

To maintain a secure environment, monitoring the health of Symantec Endpoint Protection is extremely important.   Managing the health status of  your antivirus solution is one of the first lines of a layered defense within a corporation’s complete security strategy.

Because of USB violations, 0-day attacks, and unknown rootkits discovered within corporations daily, a monitoring solution that handles simple reporting of your complete environment will reduce the time it takes to login to multiple consoles for reports.

solve-sep-metrics
SOLVE for SEP metrics

Recently, a client had an issue of host integrity checks failing on their Symantec Endpoint Protection (SEP) clients. There were multiple checks in place and verifying each option via the SEP Console was taking too much time to effectively handle in a timely basis. We deployed SOLVE in his environment to handle his reporting needs, consolidating 5+ reports into one dashboard. For example, clicking on the FAIL section of the chart allowed the client to drill-down to the filtered raw data.

sep-solve-host-integrity
SOVE for SEP host integrity metrics

With this in report hand, the client was able to determine the correct remediation path and personnel to respond to this problem.

Reporting in SEP is difficult: it’s cumbersome, requires a lot of clicks, and there are simple status reports that cannot be generated. SOLVE allows flexibility and transparency in reporting within the entire endpoint environment.

Contributed by: Brent Gueth