Get the latest news about SolarWinds Security Event Manager (SEM)
I just have a general question regarding LEM. How does LEM perform reverse lookups? I am a Network Engineer and just came on with my company. My lead systems engineer showed me host file in LEM server and it only has host entries for the server itself. Do I need to manually enter dns entries for every node that I want into…
Hello, How do I get access to BETA LEM? I noticed it is listed as my next Mission in Thwack. Thank you much!
So I am trying to build an alert for user logon failures to my cisco devices. I have a filter that allows me to monitor real time using LEM and it provides most of the information I would like however I would like email notification whenever someone fails logon to my routers and switches. I created a custom email template…
We use Nexpose in conjunction with LEM. Some of our scans are designed to check for and attempt to use ...\administrator on Windows devices. It appears nearly all of the "account login failure..." type rules are affected. I need to whitelist this activity by Source IP or whatever I can on the LEM for all of our Nexpose…
Hi, just wanted to know if there were better ways to go about configuring FIM on multiple folders on a node. Is it to configure one monitor with the whole list of folder in it ? Have multiple monitors ? Configure multiple FIM connectors (if that's even possible) ? Thanks!
Any concerns here for LEM users? Adobe Flash zero-day patch is out…for the third month in a row – Naked Security
LEM Community: On LEM I want to stop or "grey out" the Updates Enabled on the LEM. When we deploy our VDI VMs they are having a CPU spike looking for updates. This spike drops when I select the nodes on the Manage Nodes page and select Remote Updates -> disable. I would like to have the VDI deploy with this automatically…
I am trying to understand this section better. I need to send an email for when I have "host flapping" on an interface. Problem is, I need to alert on the first log (unique to device and port) but not the duplicates that will follow for at least an hour. How in the world do I set that in the "Correlation Time" section? I…
Hi, so I'm trying to implement alerting when users are accessing files from a folder and as you know this can generate a lot of alerts. I'm trying to see if I can use state variables or user defined groups to use as a flag to limit the number of emails sent. The kind of result I'm looking for: 1. Get an email on the…
What date will LEM support snmp v3? My company uses DOD requirements for all network gear. Right now LEM is not compliant. As we are in the testing phase we also realized we cannot change the port for syslog. If this was possible this would be a band-aid fix until LEM did support snmp v3. Currently with snmp v2 my company…
It looks like you're new here. Sign in or register to get started.