Get the latest news about SolarWinds Security Event Manager (SEM)
In creating a user defined group which is then used as part of a rule, I need to define a subnet or range of IPs. How can that be done other than by using astirik? For example to specify the IPs 10.10.10.0-63 or 10.10.10.0/26
We are pushing our LEM agent to all PCs on our network. While the LEM install agent install package works great, we want to insure that we don't miss any computers on our domain. A co-worker helped me create the attached batch script that we are running this script on the computer side of our group policy. This checks to…
Hello Team...I was wondering in terms of "Best Practice" tracking for the PCI, NIST, Security logging...is there such a thing as "Best Practice"? In other words, when I look at the different sections for Security, PCI, etc. I often see the same or similar templates for use. Currently, the environment we are using has all…
Hello, What would be the best way to go about switching off communication with a malicious/compromised/blocked IP that is fed from Thread Intelligence Feed or manually inserted into UDG from Emerging Threats rulesets at Index of /blockrules I tried to correlate WebTrafficAudit event (OR) Network Audit event group with…
Dear All, I am getting RSL error Flex Error #1001: Digest mismatch with RSL Redeploy the matching RSL or relink your application with the matching library.I have tried following steps but unable to resolve it. Solar winds LEM is running fine on deployment server browser. Resolution * Clear the browser's cache and cookies.…
Hi, Due to security compliance policies, i need to install antivirus (Preferably Symantec Endpoint Protection) on LEM server. Is it supported? My LEM is VMWare appliance.
Hi I am new to LEM. We have LEM installed on a linux box that has not internet access. Although I can give it access to network shares. I am looking to upgrade from version 6.4 to 6.5. How best can I achieve this. I have access to the web gui or ssh access Thanks
Hi. Hi have set up SLEM... in the configuration (can´t remember when) i declared one email address so all notifications are redirected to that email. I see I can change (or add) emails to get notifications on every rule... bu how can I change the notification email for ALL rules? Thanks in advance
Hi, I've set up a new alert for new AD users but I don't get who created the account, just the account created. I need a template with the following: User created: Created by: Time & date: If any one can help me. Thanks, Michael
Hi, Does anyone know if you can create alerts for certificates that are about to expire or have expired on a network? Thanks, Michael
It looks like you're new here. Sign in or register to get started.