ESET Endpoint Protection Integration

ESET Endpoint Security provides a comprehensive antimalware, with web filter, firewall and botnet protection for Mac, Windows and Linux. This service is designed to stop targeted endpoint cybersecurity attacks.

Blumira’s modern cloud SIEM platform integrates with ESET to detect cybersecurity threats and provide an automated or actionable response to remediate when a threat is detected on an endpoint.

When configured, the Blumira and ESET integration will stream server and workstation endpoint security event logs and alerts to the Blumira service for threat detection and actionable response.

Configuration Instructions

ESET Log Collection

Sending ESET log data to Blumira’s platform

1. Open ESET Remote Administrator Web Console (ERA Web Console) in your web browser and log in.

2. Click Admin → Server Settings and expand Advanced Settings.

3. In the Syslog Server section, complete the following steps (see figure 1-2):

Click the slider bar next to Use Syslog server
Host: Type the IP address or hostname for the destination of Syslog messages
Port: Default value is 514

4. In the Logging section, click the slider bar next to Export logs to Syslog and click Save.