Symantec Endpoint Protection
The IBM Security QRadar Symantec Endpoint Protection Custom Properties content extension adds new custom event properties for Symantec Endpoint Protection.
About the Symantec Endpoint Protection extension
Use the IBM Security QRadar Symantec Endpoint Protection Custom Properties content extension to normalize specific event data from a log source. Custom event properties can make important data more visible in your system searches and reports.
IBM Security QRadar Symantec Endpoint Protection Content Extension V1.0.2
The following table shows the custom properties that are updated in IBM Security QRadar Symantec Endpoint Protection Content Extension V1.0.2.
Original property name | New property name | Optimized |
---|---|---|
Source of Risk | Submitted By | Not applicable |
Computer Name | Machine Identifier | Yes |
IBM Security QRadar Symantec Endpoint Protection Content Extension V1.0.1
The following table shows the custom properties that are new or updated in IBM Security QRadar Symantec Endpoint Protection Content Extension V1.0.1.
Name | Optimized |
---|---|
Application | Yes |
URL | Yes |
Previous versions
For more information about previous versions of the IBM Security QRadar Symantec Endpoint Protection Content Extension, see IBM QRadar® Symantec Endpoint Protection Content Extension.