Get the latest news about SolarWinds Security Event Manager (SEM)
Especially in "Attempted to logon using explicit credentials event" a user needed for a print solution kills the monitoring. I can of course raise thresholds, but then may overlook a real problem.
New to SEM can someone help me to figure out how to get a rule created that shows failed logons by user account when it hits a certain threshold. I need to start auditing admin activity as well as group admin activity, does anyone know a way to generate alerts for admins venturing into areas they shouldn't be or something…
Finaly managed to Make SEM Shows Nodes Names Instead of IP address doing the following 1- Create a reverse DNS Zone for every network (Subnet) in your environments .2-Create A host (A) DNS record for every device which you want to add to SEM. make sure to enable the option of Create associated pointer (PTR) record ,when…
Hi, I'm trying to find a way to detect new or rogue machines that are plugged in to our network. I thought I might be able to do this with DHCP, but some of our locations use Unifi USGs that serve DHCP, rather than getting it from our Domain controllers. My next thoguht was maybe to detect new DNS creation, but I guess…
Hello, Please does any have the documentation for injecting Sophos Firewall logs to Solarwinds SEM?
Hi! I need to know if there is a way to take de NTP configuration in SEM with search string. Thanks a lot
Is there anyway through SEM to monitor your servers for memory usage, processor usage, and harddrives? Basically looking for a way to set up alerts for servers when they are getting low on memory.
Hi, I am receiving this Event in the 'LEM Internal Events' filter once per second. Other details are: ProviderSID: FastCenter normal error Component: FastCenter:QnapNAS Detail: java.io.FileNotFoundException: /var/log (Is a directory) ToolAlias: QnapNAS Description: Recoverable IOException while reading These alerts seemed…
Anyone can help me to figure out if SEM can have Oracle OCI connector? We need to ingest OCI logs outside of our OCI platform and maximize the use of SEM. Appreciate if anyone can help and advise.
I recently got my current position on the security department and have been making an effort to stand up SEM. I have added servers, added an agent to my laptop, and set up 2-3 rules, and noticed that our system resources are not where they need to be. I checked the large company size and saw the following: Does this mean…
It looks like you're new here. Sign in or register to get started.