Get the latest news about SolarWinds Security Event Manager (SEM)
We have a couple of Windows 10 workstations that are running Docker containers. The agents installs successfully on the base Windows systems and picks up the correct OS, IP address and License type (Workstation). The agents show online and have the normal four connectors running that our other Windows 10 systems have…
How can you use LEM (nDepth?) to locate servers or desktops that have initiated a powershell instance/script?
We're using LEM/SEM on some of our networks right now. We're wanting to standardize on LEM/SEM but the licensing is maybe an issue. I have many isolated enclave that are small. It doesn't make sense for small networks with maybe 5 machines on it to have 5k$ instance. Suppose I have many of these. Is there a way solarwinds…
I am trying to configure a filter to identify logon events that occur outside of business hours. I followed the below article on configuring Time of Day Sets, but LEM is capturing all of the login events and ignoring that I say "Do not include Business Hours." Has anybody else had this issue or found a way to fix this?…
We have SEM environment in our organization and seems like firewall logs consume a lot of disk space Is there a way to separate the database of network logs(firewalls) and windows logs? or maybe limit the number of days that I can store for the network logs?
I'm trying to add a syslog node (Synology NAS) and receiving this error. I rebooted the SEM host and tried to add the node again, and got the same message. Any ideas? Has anyone else had issues with adding connectors? I'm on v2019.4. I'm fairly new to this system, so I'm not even sure where to look to obtain more info…
I am pretty new to SEM/LEM. I Created the message tracking log connector and it is green indicating a active connector. I see nothing in SEM as far as exchange message tracking logs. ? When I search for information on setting up filters on how to view the message transfer logs in SEM I find nothing ? Can some one help me ?
I added a new ISR 4331 router it connects through an MPLS. So, it is showing the MPLS IP instead of the internal IP address. I was able to configure other routers when I first installed the SEM to use the internal IP. I am unable to find the article I used to make the change. I am hoping someone might know the commands or…
About one time per week, the LEM Java interface stops collecting or showing recent events. I am normally working in nDepth and find I am unable to pull any events from the last 10 minutes. After a bit of research I realize I don't have any events from the past hour or more. The fix has been to reboot and this seems to…
Just wondering if anyone is experiencing the same issues I am currently facing. Currently running SEM 2019.4 and am facing issues with 100% cpu utilization and an unresponsive SEM console. If I open the watchlog, I see issues with java out of memory, and Encryptqueue is full. I need to restart the manager to get back into…
It looks like you're new here. Sign in or register to get started.