Get the latest news about SolarWinds Security Event Manager (SEM)
I am trying to configure a filter to identify logon events that occur outside of business hours. I followed the below article on configuring Time of Day Sets, but LEM is capturing all of the login events and ignoring that I say "Do not include Business Hours." Has anybody else had this issue or found a way to fix this?…
We have SEM environment in our organization and seems like firewall logs consume a lot of disk space Is there a way to separate the database of network logs(firewalls) and windows logs? or maybe limit the number of days that I can store for the network logs?
I'm trying to add a syslog node (Synology NAS) and receiving this error. I rebooted the SEM host and tried to add the node again, and got the same message. Any ideas? Has anyone else had issues with adding connectors? I'm on v2019.4. I'm fairly new to this system, so I'm not even sure where to look to obtain more info…
I am pretty new to SEM/LEM. I Created the message tracking log connector and it is green indicating a active connector. I see nothing in SEM as far as exchange message tracking logs. ? When I search for information on setting up filters on how to view the message transfer logs in SEM I find nothing ? Can some one help me ?
I added a new ISR 4331 router it connects through an MPLS. So, it is showing the MPLS IP instead of the internal IP address. I was able to configure other routers when I first installed the SEM to use the internal IP. I am unable to find the article I used to make the change. I am hoping someone might know the commands or…
About one time per week, the LEM Java interface stops collecting or showing recent events. I am normally working in nDepth and find I am unable to pull any events from the last 10 minutes. After a bit of research I realize I don't have any events from the past hour or more. The fix has been to reboot and this seems to…
Just wondering if anyone is experiencing the same issues I am currently facing. Currently running SEM 2019.4 and am facing issues with 100% cpu utilization and an unresponsive SEM console. If I open the watchlog, I see issues with java out of memory, and Encryptqueue is full. I need to restart the manager to get back into…
Log forwarding is something we haven't currently enabled in SEM. We have an ask as to whether we can forward syslog events over TLS to another system. The forwarding part is pretty straightforward, but can SEM forward them securely? The documentation I saw doesn't allude to that, unless I'm missing something.
I have a log file for HP Content Manager that I need to pull into SEM and create rules for it. At least that is the thinking here. I put in a request for a connector, that was three months ago so I've got time to pursue other options. Is there a way to create a connector or reuse another connector? Can we modify the XML…
First - I'm having issues with my Netbotz not showing up as a "node" in the SEM console. I can see the logs in "local0", so I know they're reaching the SEM appliance. I've configured the APC InfraStruXure connector on my appliance. Still, the Netbotz device isn't showing as a Non-Agent node, and the log information is…
It looks like you're new here. Sign in or register to get started.