Get the latest news about SolarWinds Security Event Manager (SEM)
We have 2 SEM installs in our environment because of network constraints and latency. A 500 and a 100. Is there any way to get the SEM 100 to send it's events to the SEM 500 so that we can build an overall dashboard and only check one place instead of logging into 2 websites?
Symantec Endpoint Encryption (SEE) event logs can be found on client machines under Windows logs > Application > Symantec Encryption (Event IDs 3000-3013, 3020-3023, 3040-3045, 3070, 3071, 3101-3104, 3151-3164, 3201-3203). Is there any way to view these logs in LEM/SEM?
I required to integrate SEM LEM with IBM XGS 3100 (IPS/IDS) to have logs on SEM. Help required.
Has anyone integrated SEM to Checkpoint SMS 80.30 using NG LEA? I currently have a NG LEA connector connected to Checkpoint firewall version R77; will this connector interfere with connecting to an R80.30 firewall if it is stopped while i'm attempting to transition to the 80.30? I keep receiving the following error. The…
If you ever used the licensed splunk you'd know it's licensed by the amount of data you log. Once you convert from free license to paid the price adds up quickly! SEM is node based in price and that has big advantages if you log enough data. The other big plus is out of the box functionality. These days auditing log data…
Hi, like in subject I have problem with installation SEM 2019.4 agent on my new domain controller. Could anybody see that error (in attachment)? Bartek
Hi, folks, I have been asked to implement keylogging on our Linux servers in such a way that we can search the logs and see who ran what command. Step 1 of that seems pretty straightforward: implement auditd. Since we already own SEM, it seemed like a slam dunk to feeds the logs into SEM and have it parse them. We have…
The SEM product team is working on revamping the reporting engine in SEM and we're looking for a few users to give their thoughts on early design ideas. If you're interested in participating in a 1-hour WebEx call the week of February 24th, let me know and we'll set up a time. - Ashley Orr, ashley.orr@solarwinds.com
Is anyone else seeing multiple events logged for the same failed authentication attempt? When one user fails to authenticate to a server, there are sometimes 5+ events that appear, all within one second of each other. It's sorta making it tough to determine which behaviors are abnormal and deserve IR team focus. It may be…
The new HTML5 interface is getting better and better! Now if we can get licensing to a little more flexible we'll be really in good shape! I love the SEM upgrade process. SEM really is a compact virtual appliance. It's amazing what all can fit in that iso.
It looks like you're new here. Sign in or register to get started.