Monitoring the applications and services that run on client computers

Article:HOWTO55218  |  Created: 2011-06-29  |  Updated: 2011-12-17  |  Article URL http://www.symantec.com/docs/HOWTO55218
Article Type
How To

Product(s)

Subject

Languages

Monitoring the applications and services that run on client computers

The Windows Symantec Endpoint Protection client monitors and collects information about the applications and the services that run on each computer. You can configure the client to collect the information in a list and send the list to the management server. The list of applications and their characteristics is called learned applications.

Note:

The Mac client does not monitor the applications and the services that run on Mac computers.

The Symantec Network Access Control client does not record information about the applications that Symantec Network Access Control clients run. The learned applications feature is not available on the console if you install Symantec Network Access Control only. If you integrate Symantec Network Access Control with Symantec Endpoint Protection, you can use the learned applications tool with Host Integrity policies. You must install the Network Threat Protection module and the Application and Device Control module on the client for this feature to work.

You can use this information to find out what applications your users run. You can also use the information when you need information about applications in the following areas:

  • Firewall policies

  • Application and Device Control policies

  • SONAR technology

    For legacy clients, TruScan proactive threat scans

  • Host Integrity policies

  • Network application monitoring

  • File fingerprint lists

You can perform several tasks to set up and use learned applications.

Table: Steps to monitor the applications

Steps

Description

Enable learned applications

Configure the management server to collect information about the applications that the client computers run.

See Configuring the management server to collect information about the applications that the client computers run.

Search for applications

You can use a query tool to search for the list of applications that the client computers run. You can search on application-based criteria or computer-based criteria. For example, you can find out the version of Internet Explorer that each client computer uses.

See Searching for information about the applications that the computers run.

You can save the results of an application search for review.

See Saving the results of an application search.

Note:

In some countries, it may not be permissible under local law to use the learned applications tool under certain circumstances, such as to gain application use information from a laptop when the employee logs on to your office network from home using a company laptop. Before your use of this tool, please confirm that use is permitted for your purposes in your jurisdiction. If it is not permitted, please follow instructions for disabling the tool.

Legacy ID



v40608204_v59371754


Article URL http://www.symantec.com/docs/HOWTO55218


Terms of use for this information are found in Legal Notices

Please Sign In

Login using SymAccount.

Knowledge Base Search

Knowledge Base Search

Rate this Article

Help us improve your support experience.

MySymantec

MySymantec

Contacting Support

Contacting Support