Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Top Sources of Attack Report in SEPM

Created: 08 Jan 2010 • Updated: 21 May 2010 | 1 comment
.Brian's picture
This issue has been solved. See solution.

Is there a way to get more info on this report other than just the machine name? I would like to see what it's infected with and how / what it's doing that it's considered an attack.

Comments 1 CommentJump to latest comment

Vikram Kumar-SAV to SEP's picture

You might need to drill down the NTP ( firewall + IPS ) logs to find out what type of attack these machines launched

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2009081410460448 

Vikram Kumar

Symantec Consultant

The most helpful part of entire Symantec connect is the Search button..do use it.

SOLUTION