I'd like to see if we could get support for Google Cloud Platform. I know AWS and Azure are already supported, but I'd like to see if we could add Google's cloud to this list.
Prefer SNMP because more data is available from the Meraki system, but would accept Syslog. https://documentation.meraki.com/General_Administration/Monitoring_and_Reporting/Meraki_Device_Reporting_-_Syslog%2C_SNMP%2C_and_API…
We all receive lists of IOCs that are targetted at our industry sectors. You can upload IOCs to most EDR products, but I do not see a way to uplaod these to SEM, which would make a lot of sense. Pre-defined rules could also be created to make use of the IOC lists.
Our system is monitoring Kaspersky endpoint protection with SEM 2021.4. SEM collects logs through a connector that looks at Kaspersky Windows event log. Whenever a user disable the antivirus or antivrus stops working, SEM will email alert us. It was working good on Kaspesky Endpoint 11.6 but when version 11.9 came out, it…
Requesting for Nutanix AHV to be added to the supported hypervisor list for the SEM VM appliance. Currently only VMware and Hyper-V are mentioned: SEM 2020.4 system requirements It has been mentioned on the product forum in the past: Hosting SEM appliance on Nutanix - Forum - Security Event Manager (SEM) - THWACK
The self-extracting file that came in the 2020.4.1 version was useful for deploying via SCCM. The current versions of the local windows SEM agents are not self-extracting. Is there a way to make the versions 2021.4 and up "self-extracting"? Thanks
Recently, a problem occurred within MSSQL on a Windows Server. This resulted in thousands and thousands of events being recorded in the MSSQL App event log (within a 30 minute time period before and admin was able to fix that problem), which we monitor. SEM, per the service event warning rule we have, started creating an…
I feel there is a need to be able to create dashboards in the SEM console that have a limited view to certain servers in an environment and are locked down to only certain authorized users. The current way groups work does not provide a limited scope to the SEM or only certain portions. We had a request from our developers…
We have an initiative to replace all self-signed certs with signed certs from our external CA for compliance reasons. I was able to create a wildcard cert (*.example.com) and use it with multiple management applications including SolarWinds NPM, but unfortunately this is not supported for LEM. I'd love to see this…
It looks like you're new here. Sign in or register to get started.