This short video explains how to enable logging from SEP-server to windows event log either to "localhost" or to a remote source.
If your organization wants to have total overview of all events in SEP logging is a great tool to achieve that. Some organizations use a central management system for logs this is sometimes called:
- SIEM (Security Information and Event Management),
- SEM (Security Event Management) or
- SEIM (Security Event and Incident Management)
and with the help of this youtube-video you are now empowered to have a centralized control of all your logs.
YouTube: How to enable logging to windows event log for SEP