Get the latest news about SolarWinds Security Event Manager (SEM)
Hi guys, We are looking to use LEM to implement USB blocking. I understand how to create a whitelist, uploading the PID's of the stick etc. My question is this: Lets just say we have a whitelist with a tonne of PID's in it. A user needs to have a new device whitelisted and I upload a text file containing only the PID of…
I've added the configuration. and I can see logs in the cmc but, can't add a node.
Hi there, I am trying to setup email alert for DNS record update alerts. In the action tab, I am targeting to Host incidents as we trying to get alert from internal DNS server if there are any DNS records update. After I tested, I dont see any email alerts to my email. Please let me know if I have to make any changes in…
I noticed when I upgraded from 6.6.0 to 6.7.1 and 6.7.2 that my custom Tags went missing under Rules. Under the Manager Console I was able to create a Tag but cannot add any rules to the Tag. I also see no way to delete the Tag. So I thought OK they have moved it to the LEM Events Console. When you go there it leaves me…
Hello, I recently updated SEM to the latest version (v6.7.2) and one of my Sys Admins also is trying to bring a RHEL server online. I gave him the latest agent, but he is getting Java errors and the agent is not reporting into the SEM appliance. The RHEL server is running Open JDK v11. What Java versions are supported? I…
I had the last weeks the problem that I needed to create a special report for our colleagues from auditing in SEM. The report should show some SQL Server specific things. The problem was that I didn't want to buy a full version of Chrystal Reports. What I did was: I installed the free version of Visual Studio and installed…
Is there a way to alert on a syslog device not sending? As part of our security checks we have to alert if a server or device stops sending logs. Thanks for any ideas you might have. Steve
I have a really large environment (many domain controllers). I currently have the SEM/ LEM agent installed on my two local domain controllers and I can see the changes made to the security groups as long as I am logged into one of those two local domain controllers that have the agent installed. If I, or someone else, were…
I am needing to create a monitor with a filter condition that would query a custom local security group on a file server. I know that using a Active Directory domain group or even a SEM group would be easier and probably even suggested, but due to some constraints in my environment, that solution does not give me the…
Needing a hand, this is my first time diving into LEM/SEM and created my first rule but doesnt seem to be working. Im trying to send email alerts each time a user gets disabled to our help desk but doesnt look like its executing. Not sure if its my rule or maybe my email template/smtp is incorrect in some way (Im able to…
It looks like you're new here. Sign in or register to get started.