Get the latest news about SolarWinds Security Event Manager (SEM)
Is there a LEM connector in the works for Desktop Central?
Has anyone wrote a report that tracks when a node or agent last sent an alert? There is a dashboard widget for this but I'd like a report that we can scrub through every week or so to see where our problem devices are.
I am receiving massive amounts of denied TCP packets and Telnet requests from outside sources EX.Russia,Germany, Netherlands,Venezuela, and some US states. These alerts are coming from a custom filter I created: "TCPTrafficAudit.DestinationMachine=Internal IP". Apart from creating geo-blocks and restrictions on my…
Hello community, Can you please advise on how I am able to send a specific folder logs to Solarwinds LEM. I have an Ubuntu syslog server logs that need to send to LEM. The log folder generates a different .log entry for every unique host. For example below. /var/log/appliance_web 1.2.3.4.log 5.6.7.8.log The connectors only…
Odd question here. I've noticed that the EventInfo information, at least for the FileCreate and FileDelete events, is transformed to all lower-case letters in our email alerts. The EventInfo displaced on the screen is in mixed-cases, but the email alert is all lower. I've looked for some sort of formatting switch and can't…
Hi everyone, so I am establishing new rules in LEM and need some advice. I would like to monitor all access to certain servers. Firstly I wanted to ask what other information should I be monitoring other than logging? The other questions is my current rule layout. At the moment I have UserLogin AND rule and…
Hi Experts, i have a problem in discovering the nodes through remote agent installation in solarwinds LEM. i am running in windows server 2010 and had connectivity tested all over the remote machine using ping allover seems to be working fine. Any one can please help with this issue. Thanks in advance.
I hope this is not a dumb question. I see three USB reports but I need one that give me the File Audit info for a USB device. I can see in the LEM that it tells me everything written to and deleted from a device but I don't see a report that I can get daily with that information. Was wondering if anyone had a template to…
Hi, We are using Solarwinds LEM version 6.6. We are having Windows server RDP session automatic signing out issue. The server involved are Windows 2008 R2 & 2012 R2. Once we stop the solarwinds service the issue seems to get resolve. Can anyone suggest why it is happening ? Does anyone facing this issue ? What is the…
Hi, we use Windows 2016 Server in our environment and LEM 6.4. We have installed die LEMAgent an die Windows 2016 Server with die Windows Installer from LEM (local installation). There are 4 Connectors connected to the LEMAgent, but only 2 connectors I can start: (1) Windows Active Response --> RUN (2) Windows Security Log…
It looks like you're new here. Sign in or register to get started.