Video Screencast Help

Top Sources of Attack Report in SEPM

Created: 08 Jan 2010 • Updated: 21 May 2010 | 1 comment
ᗺrian's picture
This issue has been solved. See solution.

Is there a way to get more info on this report other than just the machine name? I would like to see what it's infected with and how / what it's doing that it's considered an attack.

Comments 1 CommentJump to latest comment

Vikram Kumar-SAV to SEP's picture

You might need to drill down the NTP ( firewall + IPS ) logs to find out what type of attack these machines launched 

Vikram Kumar

Symantec Consultant

The most helpful part of entire Symantec connect is the Search use it.