Endpoint Protection

 View Only

  • 1.  Host Integriy Reports

    Posted Sep 01, 2012 06:10 AM

    Hi,

    Where to find the host integrity status in Symantec console?

    Is there any report availble for that?



  • 2.  RE: Host Integriy Reports

    Posted Sep 01, 2012 06:15 AM

    have you enable SNAC ?

    Creating and testing a Host Integrity policy

    http://www.symantec.com/business/support/index?page=content&id=HOWTO55759



  • 3.  RE: Host Integriy Reports

    Posted Sep 01, 2012 07:40 AM

    Hi,

    I have already enabled SNAC..Now what i required is to have any report to see the status of Host integrity? how many passed  /failed?



  • 4.  RE: Host Integriy Reports
    Best Answer

    Posted Sep 01, 2012 07:46 AM

    Check this fourms

    http://www.symantec.com/connect/forums/host-integrity-report

    Mithun Sanghavi Comments

    Hello,

    You can collect the Compliance Logs.

    (SEPM > MONITORS > LOGS > Change the Logs type to "Compliance" > Advance Settings)

    The compliance logs contain information about the Enforcer server, Enforcer clients, and Enforcer traffic, and about host compliance.

    The following compliance logs are available if you have Symantec Network Access Control installed:

    • Enforcer Server

      This log tracks communication between Enforcers and their management server. Information that is logged includes Enforcer name, when it connects to the management server, the event type, site, and server name.

    • Enforcer Client

      Provides the information on all Enforcer client connections, including peer-to-peer authentication information. Available information includes time, each Enforcer's name, type, site, remote host, and remote MAC address, and whether or not the client was passed, rejected, or authenticated.

    • Enforcer Traffic (Gateway Enforcer only)

      Provides some information about the traffic that moves through an Enforcer appliance. Available information includes the time, the Enforcer name, the Enforcer type, and site. The information also includes the local port that was used, the direction, action, and a count. You can filter on the connection attempts that were allowed or blocked.

    • Host Compliance

      This log tracks the details of Host Integrity checks of clients. Available information includes the time, event type, domain/group, computer, user, operating system, description, and location.

     

    Reference:

     

    About log types
     
     
    or...

    You can collect the Compliance Logs from your SEPM server.

    1) Login to SEPM

    2) Go to MONITORS

    3) Go to LOGS

    4) Change the Logs type to "Compliance"

    5) Advance Settings

    6) Click on View Log

    7) Click on Export

    Once, the logs have been Exported, you could use this article to get them to open in Excel

    https://www-secure.symantec.com/connect/articles/how-export-virus-definition-and-client-information-excel-format

     

     



  • 5.  RE: Host Integriy Reports

    Posted Sep 03, 2012 12:11 AM

    Hi,

    Thanks for the detailed update



  • 6.  RE: Host Integriy Reports

    Posted Sep 03, 2012 12:20 AM

    hi,

    If you have received solution don't forgot Mark a Solution



  • 7.  RE: Host Integriy Reports

    Posted Sep 03, 2012 03:28 AM

    what is this integrity report do ?



  • 8.  RE: Host Integriy Reports

    Broadcom Employee
    Posted Sep 03, 2012 03:34 AM

    reports teh machines that have passed or failed the HI policy set.



  • 9.  RE: Host Integriy Reports

    Posted Sep 03, 2012 04:40 AM

    ah OK, that does make sense Pete.

    I was thinking that this is only applied for SEPM server not the client.