Hi Outrageous,
I set up my SAVFL on Ubuntu to forward its logs recently to my SEP 12.1 SEPM, so can pass on some recommended reading and advice.
First off: what is your version of SAV for Linux? (SAVFL)? If it is a recent version, then the necessary Reporter install package is right on the CD. SAVFL Reporter is not installed by dfault with SAVFL, but it is straightforward enough to install and configure. The readme attached to this article has all teh necessary info.
Symantec AntiVirus for Linux (SAVFL) Reporter 1.0.10 Release Notes
Article: DOC3474 | Created: 2010-12-15 | Updated: 2011-11-01 |
Article URL http://www.symantec.com/docs/DOC3474
Next, set up the SEPM:
How to enable the 12.1 Symantec Endpoint Protection Manager (SEPM) to receive logging from legacy clients.
Article: TECH157463 | Created: 2011-04-05 | Updated: 2012-01-31 |
Article URL http://www.symantec.com/docs/TECH157463
The threat logs, etc from Ubuntu were then seen in my SEPM's reports, and they trigger notifications, etc in case of outbreaks.
Give it a try - please keep this thread up top date with your progress!
All the best,
Mick