MVISION today has not been particularly popular for us as an event source.
Based on your comments, would it be then safe to say that MVISION is the same as ePO, except that it is cloud based instead of on-premise?
Allow me to ask our event source team about this one.
this enhancement request has come up at least once before, I can see we have an existing IDEA (Enhancement Request) ticket on the backlog. Unfortunately we have no ETA commitment to provide right now.
As of this week, we’ve an engineer looking into an integration with McAfee MVISION ePO.
One question, are there any types of logs in particular that you’d like from this event-source? (Just so our engineer can have this in mind when reviewing documentation).
It is worth noting that building an integration like this does take some time, but we’d expect to have this in product for Q3.
So this work was initially researched by engineering, but was paused for other event source related work.
I’ve a call with our engineering team next week to discuss how we progress this again. We’ll need sample logs to help build out parsing rules, so I will follow up next week to let you know the easiest way of getting these sent over to us.
Apologies on behalf of the team for delay on this one but hopefully we’ll be able to get an ETA on delivery in coming weeks.
One of our engineers is ready to start work on integration - wondering would you be willing to send over sample logs through Kiteworks or give our team Dev Access to speed up work?