Logsign is seamlessly integrated with Symantec Endpoint Protection (SEP). Let’s see how.
Basic functions provided by Symantec Endpoint Protection:
- Antivirus protection
- ADC is an application based module which has been developed against policy based threats especially capable of infecting system files and those from external devices.
- Firewall protection
Indication of activities detected and directed by SEP on Logsign;
1. Firewall Protection
By creating dashboard, reports and alerts on Logsign, Firewall based blocked and permitted traffic can be monitored real-time.
Figure 1: Port based traffic monitoring on Logsign.
2. Antivirus Protection
By creating dashboard, reports and alerts on Logsign, the activities detected by SEP and taken care of can be monitored.
Figure 2: Real time indication of the risks found and actions taken
In addition, for the risks detected under the category of malware and virus by making use of the signature base, real-time action can be taken by using alerts and dashboard.
3. Application Control
By creating dashboard, reports and alerts on Logsign, malware detected by SEP can be monitored.
Figure 3: Policy based blocked applications and file actions
4. Device Control
By creating dashboard, reports and alerts on Logsign, external devices detected by SEP and taken actions can be monitored.
Figure 4: The blocked devices list are located in the left widget while the permitted ones are on the right side
By real-time search via Logsign, SEP based security, system and traffic activities can be detected.
Figure 5: Risks detected by SEP
Furthermore, by creating alert rules on Logsign, you can take real-time action.