Get the latest news about SolarWinds Security Event Manager (SEM)
Hi all, I’m trying to create a SEM rule to monitor chown executions on Linux. I created a rule using EventInfo and ExtraInfo as it is shwon in live events EventInfo = /bin/chown and/or ExtraInfo = TeleType: "pts/1", Working Directory: "/tmp", Command: "/bin/chown" The rule does not fire when the command is executed.…
At the moment, the Event Details panel on the Live Events page is quite basic: it’s fixed to the right side, cannot be resized, and offers no fullscreen option. For larger or more complex events this makes it difficult to review all the information, especially when JSON payloads are involved. The current layout (bold label…
I have been noticing more frequent that the connection are going into unknown status and I have to open the connector resave the connector and then turn this back on to restore functionality I was wondering if anyone else was experience similar issues?
Hi Dears, I’d like to gather your input on best practices for creating rules What are the recommended rules or alerts you suggest for monitoring Linux servers that host web applications (Apache, MariaDB, etc.)? What are the best practice rules to apply for Active Directory and Windows servers? What about the rules to apply…
Hi Dears , I’d like to get your advice regarding VMware monitoring in SEM. What is the best approach for monitoring — should we monitor vSphere, Vcenter, the ESXi servers, or the individual hosts? What kind of information or log details can we expect to get from each (vSphere vs ESXi vs hosts)? Is vSphere 5.0 still…
I am trying to find out if SEM servers can have multiple SEM serveres that share data. Basically we would like to have SEM servers on several different domains that can be viewed at that level and also have the SEM data forwarded to a master SEM server where it can be viewed there. I now know the agents can't forward to 2…
I'm stuck here trying to connect to my SEM Web API from my SolarWinds Observability console SEM settings virtual network is same because my SolarWinds platform IP : 192.168.2.95 SEM module IP : 192.168.2.126 Kindly help and suggest ways to troubleshoot I've already tried options.
Hi everyone, I'm currently working on integrating Kiwi Syslog Server with SolarWinds SEM, and I've encountered a challenge I hope someone here can help with. Here’s my current setup: All logs from multiple sources are being forwarded to centralized Kiwi Syslog Servers. I successfully configured SEM agents on the Kiwi…
Hello Everyone, I am attempting to run reports on data collected a few months ago. I get zero results but definitely have data for the time frame and was sure to select the custom range. Will I need to modify the predefined reports? Is this not possible? Thanks
After upgrading to SEM 2025.2 and subsequently upgrading agents, we are seeing more instances of Windows systems sending "Misconfigured Windows Event connector: *, stopping connector.". Can be any of the Application/Security/System connectors, or all three. No apparent pattern of commonalities to the servers. Messages I…
It looks like you're new here. Sign in or register to get started.