Get the latest news about SolarWinds Security Event Manager (SEM)
Hi Everyone, First time poster to these forums. I have the SEM Appliance running on an Industrial Control Network and I would like to add McAfee Antivirus to it. I've used Linux for years and I understand the implications of not having AntiVirus on it as well as the false-sense-of-security Linux can provide simply because…
I have an OpenShift 3.9 cluster that is configured with an EFK stack with fluentd log collectors. I can configure the fluentd daemon set to offload application and operation OpenShift logs to an external syslog collector (RHEL 7 Server via Port 514) . Can I configure the fluentd daemon set to offload these logs to a LEM…
Hi there...I am trying to edit a rule to have an IP or host name detected when a user was added to administrator group. Previously created rule (by another person) doesnt have the IP or host name to detect, when the event is triggered. I am trying to edit that rule & also added another "send email message action & I cannot…
Hi there...I have worked on LEM before, but its been awhile. I am trying to find if I create a rule and not specify a group to target for systems or users, will that rule apply for every nodes thats added in the LEM ? Can you please advice me in that ? I have been watching videos about creating rules, but when tried to…
I have a trial version of SEM installed as a test, the windows installer instals ok, the server is configured and can ping ip addresses, but the nodes aren't showing on the GUI. I've left it around 45 minutes for the nodes to communicate with the server, but they're not there. do I have to do anything else? Such as a…
There is a good discussion on how to use an old deprecated approach to monitoring SQL Server (audits) that uses a trace (SQLAuditor.exe) but the trace misses much of the information required by the STIGs. Meanwhile, with the STIG, we generate a great deal of information (I've seen it reach 20 GIG a day but we found a way…
Hello, When trying to install the latest AIR Console for SEM management (version 6.7.1), I get the following error: I have the latest stable release of Adobe AIR (version 32.0.0.125) Any hints or only a support case can resolve this ? Thanks
Hey guys, What connector would you guys use to monitor changes made to a file on a Linux host? Specifically a log file. I would like to be able to generate events noting the changes made to said file. Is there a connector that can handle this? Thanks, Diogenes
Where can I find a list of the current default reports?
Hi, has anyone successfully setup the fortimail or fortiweb to successfully log on SEM? i am running the latest update for the virtualised appliances of both. i can see the logs passing the firewall and going to the LEM. I just cant get the console to show the info through the connectors. Am i missing something? Any help…
It looks like you're new here. Sign in or register to get started.