Community
- Command Central
- MVP Program
- Monthly Mission
- Blogs
- Groups
- Events
- Media Vault
Products
- Observability
- Network Management
- Application Management
- IT Security
- IT Service Management
- System Management
- Database Management
Content Exchange
- SolarWinds Platform
- Server & Application Monitor
- Database Performance Analyzer
- Server Configuration Monitor
- Network Performance Monitor
- Network Configuration Manager
- SQL Sentry
- Web Help Desk
Free Tools & Trials
Store

Security Event Manager (SEM)

Security Event Manager (SEM) Feature Requests
Newsroom
Get the latest news about SolarWinds Security Event Manager (SEM)

Recent Discussions

How to monitor available updates of Solwarwind Orion plattform?
Since two days some hotfixes were available, but there was not warning/alarm about those hotfixes. I enabled "Orion Server 2020.2.6 - Main Polling Engine" but that does not seem to check for updates. It seems quite curious that your monitoring tool does not inform you about it's own updates (with critical security fixes…
Solarwinds Event Manager API access / documentation
Is there any documentation for /api of the SEM HTML5 Interface? I am looking for the ability to query data via Python, PowerBI etc.....
Sophos AP
Is there a connector that will work with Sophos APs? I can set the AP to send the syslog to the SEM IP but it responds with "Server Unreachable".
Can I exclude users from "Attempted to logon using explicit credentials event" or "Account failed to logon event"?
Especially in "Attempted to logon using explicit credentials event" a user needed for a print solution kills the monitoring. I can of course raise thresholds, but then may overlook a real problem.
Large number of failed logins
New to SEM can someone help me to figure out how to get a rule created that shows failed logons by user account when it hits a certain threshold. I need to start auditing admin activity as well as group admin activity, does anyone know a way to generate alerts for admins venturing into areas they shouldn't be or something…
SEM Nodes Name Instead Of IP Adress -Solved
Finaly managed to Make SEM Shows Nodes Names Instead of IP address doing the following 1- Create a reverse DNS Zone for every network (Subnet) in your environments .2-Create A host (A) DNS record for every device which you want to add to SEM. make sure to enable the option of Create associated pointer (PTR) record ,when…
New Machine detection - not DHCP
Hi, I'm trying to find a way to detect new or rogue machines that are plugged in to our network. I thought I might be able to do this with DHCP, but some of our locations use Unifi USGs that serve DHCP, rather than getting it from our Domain controllers. My next thoguht was maybe to detect new DNS creation, but I guess…
Intergrating Sophos Firewall to Solarwinds SEM
Hello, Please does any have the documentation for injecting Sophos Firewall logs to Solarwinds SEM?
What NTP server is SEM using?
Hi! I need to know if there is a way to take de NTP configuration in SEM with search string. Thanks a lot
Server Monitoring for Memory Usage
Is there anyway through SEM to monitor your servers for memory usage, processor usage, and harddrives? Basically looking for a way to set up alerts for servers when they are getting low on memory.