Video Screencast Help

SEPM Scheduled Reports File Format

Created: 31 Jul 2009 • Updated: 20 Jul 2011 | 85 comments
techbeck's picture
175 Agree
0 Disagree
+175 175 Votes
Login to vote
Status: Partially Implemented

Currently the scheduled reports in SEPM emails the report in a .MHT file extention.  Would be great to have other formats to choose from like PDF, DOC, and maybe few image file formats.

Comments 85 CommentsJump to latest comment

sokushi's picture

The mht file format is completely useless. A plain text option with no attachments is a must. The fact that there are responses from 2009 and this has not been resolved by Symantec is an obvious indication that Symantec is in no rush to get this out.  SEP's ability to actually stop malware/trojan's/drive by's, etc is dubious to start with. We deal with one or more incidents a week and receiving an infection alert in an mht file on a phone then having to go to a windows machine and open it in IE juet to find out what is actually happening is ridiculous. Recently the mht file format had an exploit and MS's solution was to kill the file association.  

Symantec: Just fix the problem.  It is currently another reason not to deploy SEP in an enterprise environment.

+3
Login to vote
Rob Anderson's picture

This is what happens when you farm all your high level software engineering out to third world countries. I have no doubt their skill level is more than adequate but the practical application of that skill seems to be severely lacking.

0
Login to vote
Rob Anderson's picture

Jim, or ANYONE from Symantec care to comment on this?

0
Login to vote
Gilles_Guimet's picture

Hi Symantec, Jim or anyone reading,

I confirm that .mht attachments are really unconvenient...

Graphs and text in html body messages would really be more usable.

Please Symantec, could you be a little more informative

Thanx

0
Login to vote
Rob Anderson's picture

Symantec, you guys are a bunch of clowns. This would not be anywhere near as ridiculous had you not gotten involved in the discussion to begin with. Nevertheless you did get involved and you did commit to fixing the issue 17 months ago

Jim Waggoner, Director product management, February 2010:
We are converting it to HTML.

WELL?

If Jim has moved on are there no other Symantec employees monitoring this thread? Surely 17 months of this issue getting bumped back to the top is enough for someone to have noticed it?

This is such a joke, and a very compelling reason to switch providers.

0
Login to vote
Paul Murgatroyd's picture

Sorry for the delay in our response here, we have been busy SEP12 to market.

SEP12 introduces notifications as HTML with all the information in the body of an email.

Scheduled Reports are still MHT's, but the feedback we have had from our wider customer base is that generally they wont be reading reports on their mobile devices.  Granted there are still some issues with MHT's on non-Windows platforms, and removing MHT completely is something we are looking at in the coming year, but hopefully notifications will solve the problem for most people.

thanks!

Paul Murgatroyd
Principal Product Manager, Symantec Endpoint Protection
Endpoint twitter feed: http://twitter.com/symc_endpoint

-1
Login to vote
J.Bonner's picture

I was never asked for my feedback, because I would have said the opposite regarding reports. We have a lot of limited administrators, and many of them use OWA to view their email. Hence, they cannot use the SEPM reports because MHT files are a blocked extension type in OWA 2010. (The files can't even be downloaded to the desktop from OWA 2010.)

Jon

+1
Login to vote
Marlin's picture

So any way to customize these reports?  Say by killing the graphics (they're pretty but they add no value to the alert),  Maybe a checkbox form for what data and a drag and drop thingie to mock up the layout would make it a more interesting problem for your programmers.

 

 

0
Login to vote
John Santana's picture

Hi, I'm using SEPM Server v12.1.2 but somehow I am still receiving the report in .MHT ?

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.

0
Login to vote
Gerald Selvaraj David's picture

Any update

0
Login to vote
Paul Murgatroyd's picture

did you read my post above yours?

Paul Murgatroyd
Principal Product Manager, Symantec Endpoint Protection
Endpoint twitter feed: http://twitter.com/symc_endpoint

-1
Login to vote
XavierSyn's picture

We are going to migrate 70 000 users in OWA 2010. More than one hundred people are recipient for SEPM Report like security managers, supervisors and administrators.

Today in OWA 2003, it is possible to open .mht

Tomorrow in OWA 2010, it will be impossible !

So WE ARE WAITING a new format for SEPM reports like pdf, html or anything else compatible Owa2010

Thank you very much !

+4
Login to vote
thedadman's picture

Mht is crap, not only does it not open in a PDA, when I recieve it as an email attachment, I need to click three different times to get it open.  Symantec, you should be ashamed as a company.  PDA's have ruled the market for several years.  I am amazed at your disregard for your users.

0
Login to vote
levd's picture

Hello,

 

Whats the status for changing scheduled reports to other file formats?

 

LEVD

0
Login to vote
Oliver L's picture

I think this is a relly good Idea.

Also it would be nice if it is possible to send encypted PDF Mails.

If the reports are sent to a partner or on a team Mailbox and not anybody should see the content of the report.

0
Login to vote
Marlin's picture

These emailed reports are driving me crazy.  When I get a risk alert I want to immediately see a handful of information.  I have zero interest in seeing pie graphs and charts.  I hate having to scroll through long emails just to find the specific bits of info I need, on top of which sometime it's a graphic and sometimes it's text in a small spreadsheet like chart.

All I want is:

1 - name of PC
2 - IP address of PC
3 - timestamp of event
4 - name of detected file or process
5 - name of infection
 

I'm sure only three quarters of the time I spend looking at any given SEPM alert email is spent trying to find the details I've listed, but it always seems like more.

Is there anyway to remedy this?

 

Marlin

 

 

+1
Login to vote
Marlin's picture

Bumpety bump bump bump.

0
Login to vote
Marlin's picture

Hey!  Here's a good idea! 

0
Login to vote
Gerald Selvaraj David's picture

Any Update regarding This

0
Login to vote
Nigel G's picture

Yup - still waiting.......

Every other system I use saves/reports as PDF - why does Symantec have to be so antiquated (and so slooooow to fix!)

0
Login to vote
durgesh's picture

Recently I came to know that due to our security policies, .mht and .gif files are being blocked by IPS device.

Even the authentication failure notification contains attachement of two .gif files which are of no use at all.

Hence, there is a strong need of alternet file format option for scheduled reports and the attachements from notification mails should be removed.  

0
Login to vote
levd's picture

Waiting for this also.

0
Login to vote
rmoc's picture

+1

mht's are getting blocked by my organization's spam filter.

I have trouble viewing the mht file also.  I have to clear my temp files or I get an error. 

 

A plain text email would be ok.  And viewing the actual report on the SEPM machine would work.

0
Login to vote
LouB13's picture

Well I have to agreement with most of the comments here that Symantec has dropped the ball on the mht format.  Since I moved to V12 from V11 I can no longer read any reports, so upgrading has made my experience worst.

There needs to be an option to create reports in different formats.  Please conceder an upgrade that allow the option to create reports if different format for the majority of your users.

+2
Login to vote
rmoc's picture

Any updates on this?

 

My organization still blocks mht files.  I'm stuck there.  I haven't seen a report since last fall.  It's not really a feature of the product anymore.

0
Login to vote
John Santana's picture

I don't know, yet, hopefully in the next SEPM 12.1.3 it is available in different format such as PDF

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.

0
Login to vote
gbaker's picture

Amazed this has been a issue since 2009.  I would have thought that reporting on what SEP is detecting would be paramount for an Admin.  Funny that the Executive Reports cannot be read on the devices of those who authorize the purchase of this software and the renewal of licensing.  It is time to provide options for reporting formats ... my preference would be PDF.

0
Login to vote
rmoc's picture

Yes, does 12.1.3 solve this?

0
Login to vote
SysAdmin_D's picture

@rmoc

I don't see a way in 12.1 RU3, so it must still be "pending."

 

As a completely mixed shop (Win, Mac, Linux), with security guys (and myself for that matter) being Mac converts for the flexibility amongst all OSes, this is a must. Default CSV, or HTML if it has to be (for visibility), would allow for much quicker response or triggered alerts to focus our efforts. This is really hampering our responses and needed a fix years ago as it's only worse now after slashed budgets/labor. 

+1
Login to vote
4userguy's picture

Not having the report data available in a format that allows easy sorting and other manipulation is simply not an acceptable product feature in 2013, especially for enterprise customers.  Its even more stunning that it has not been addressed since 2009.  Perhaps making that known to account managers is more effective than posting to this list.

+2
Login to vote
John Santana's picture

Yes please, even in the normal HTML table or .CSV that'd be great.

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.

0
Login to vote
sainathn's picture

I am also thinking. It would be great if the reports comes out in PDF file only rather than pulling the reports in MHT file. 

My manager will always ask me to send the symantec reports in PDF format. Then I will convert the file to PDF then I will send him. Kindly look into this.

0
Login to vote
InfoSecHealthCare's picture

This feature needs to be addressed and implemented as quickly as feasible Symantec.

 

The functionality of having a hard coded format of .mht is extremely limiting as more of the traditional use cases for reporting and alerting out of the Management server is to Mobile devices.

 

We are well past the days of a lone analyst sitting at a desk staring at a screen, we need these features sooner not later.

The oppurtunity to secure ourselves against defeat lies in our own hands, but the oppurtunity of defeating the enemy is provided by the enemy himself.

--Sun Tzu; The Art of War

 

0
Login to vote
seanzal's picture

This has not been addressed since 2011.... This is such an obvious feature what is taking so long??

0
Login to vote
John Santana's picture

OK, I can now open it on my iPhone, with Box.com application.

so the .MHT is readable this way.

Kind regards,

John Santana
IT Professional

--------------------------------------------------

Please be nice to me as I'm newbie in this forum.

0
Login to vote