Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

Notifications reporting with 'No Data'

Jump to Best Answer

1. Notifications reporting with 'No Data'

0 Recommend
Migration User
Posted Apr 12, 2016 09:55 AM

Reply Reply Privately
Hello, I've recently setup notifications for email with our SEP server. The notifications that come in are usually not helpful and contain messages such as...

"Found 1 or more security events. Actual number of security events found was 74 in 1 minutes.
Security events included:
Compliance, Device Control, Network Threat Protection, Traffic, Packet and Application Control."

But when I look further in the email, it's a lot of pie charts with 'No data'

And sometimes it will come in with data, but I would say 80% of the time it's 'No data'.

Did I configure something incorrectly in notifications?
2. RE: Notifications reporting with 'No Data'

0 Recommend
ℬrίαη
Posted Apr 12, 2016 09:59 AM

Reply Reply Privately
This looks to be from risks detected, not NTP, which would show targets attacked. What alert/report was configured?
3. RE: Notifications reporting with 'No Data'

0 Recommend
Migration User
Posted Apr 12, 2016 10:11 AM

Reply Reply Privately
I have the alert set as:
4. RE: Notifications reporting with 'No Data'

0 Recommend
ℬrίαη
Posted Apr 12, 2016 10:13 AM

Reply Reply Privately
If you check Monitors >> Logs >> Network Threat Protection, do you have any relevant data there?
5. RE: Notifications reporting with 'No Data'

0 Recommend
Migration User
Posted Apr 12, 2016 10:14 AM

Reply Reply Privately
Yes, we run a vulnerability scanner and it has multiple entries in that log file which is expected.
6. RE: Notifications reporting with 'No Data'

0 Recommend
Migration User
Posted Apr 12, 2016 10:15 AM

Reply Reply Privately
But the last time it ran was 02:58:32, that screenshot with the 'no data' sent out at 4:34am, 5:34am, 6:34am and 7:34am
7. RE: Notifications reporting with 'No Data'

0 Recommend
Migration User
Posted Apr 13, 2016 09:13 AM

Reply Reply Privately
Any further assistance would be greatly appreciated
8. RE: Notifications reporting with 'No Data'
Best Answer

0 Recommend
ℬrίαη
Posted Apr 13, 2016 09:26 AM

Reply Reply Privately
What is the exact SEPM version?

Try deleting and re-creating the alert.
9. RE: Notifications reporting with 'No Data'

0 Recommend
Migration User
Posted Apr 13, 2016 09:40 AM

Reply Reply Privately
I'm on 12.1.6 (12.1 RU6 MP4) build 6860 (12.1.6860.6400)

I've re-added the alert. I'll let you know how it goes.

Thanks again for your help.
10. RE: Notifications reporting with 'No Data'

0 Recommend
ℬrίαη
Posted Apr 13, 2016 09:41 AM

Reply Reply Privately
Sounds good.
11. RE: Notifications reporting with 'No Data'

0 Recommend
Migration User
Posted Apr 13, 2016 12:08 PM

Reply Reply Privately
I've changed it to a event list vs a summary report and it appears to be good so far, althought it's just doing application control events so far

Endpoint Protection

Notifications reporting with 'No Data'

Migration UserApr 12, 2016 09:55 AM

ℬrίαηApr 12, 2016 09:59 AM

Migration UserApr 12, 2016 10:11 AM

ℬrίαηApr 12, 2016 10:13 AM

Migration UserApr 12, 2016 10:14 AM

Migration UserApr 12, 2016 10:15 AM

Migration UserApr 13, 2016 09:13 AM

ℬrίαηApr 13, 2016 09:26 AMBest Answer

Migration UserApr 13, 2016 09:40 AM

ℬrίαηApr 13, 2016 09:41 AM

Migration UserApr 13, 2016 12:08 PM

1. Notifications reporting with 'No Data'

2. RE: Notifications reporting with 'No Data'

3. RE: Notifications reporting with 'No Data'

4. RE: Notifications reporting with 'No Data'

5. RE: Notifications reporting with 'No Data'

6. RE: Notifications reporting with 'No Data'

7. RE: Notifications reporting with 'No Data'

8. RE: Notifications reporting with 'No Data' Best Answer

9. RE: Notifications reporting with 'No Data'

10. RE: Notifications reporting with 'No Data'

11. RE: Notifications reporting with 'No Data'

8. RE: Notifications reporting with 'No Data'
Best Answer