Get the latest news about SolarWinds Security Event Manager (SEM)
I'm needing to revisit my calculations for storage capacity as we expand the sites we are covering with LEM. I'd like to do a more thorough job this time, but am having trouble finding some of the metrics I need to make my calculations. Previously I have used information from both the Database Maintenance Report and output…
I have several problematic Windows 2012R2 managed print queues that I would like out LEM to monitor to let me know when the queues have back up or stopped responding, is there anything in the LEM that can do this.
Hi Everyone...I'm setting up some alerts for the LEM to capture, and I was wondering if the community is aware of any "best practice" alerts to ensure are enabled. For example, I know that events like Account Creations/Deletions, Port Scans, etc should be enabled but what others are recommended? Thoughts are welcome!…
Has anyone setup a hotpot and configured it to report findings to LEM. I'd prefer something light and modular like HoneyPy, but it doesn't natively generate log files (yet... it does report to HoneyDB and other solutions). Looking to keep things open source as we haven't budgeted for another security product. Thanks!
The Log and Event Manager can handle a lot of events in a day, but something support sees a lot is excessive file auditing. "But wait!" I already hear you saying, "How can there possibly be such a thing as too much auditing?! My auditors tell me to audit everything!" The Experiment Yeah, well...let me paint you a picture.…
I have created a rule in LEM and by itself it is firing correctly... for the most part. We have a list of individuals that we monitor their lockouts. The trouble i run into is that we get a few false positives because the rule catches other users. Correlations UserDisable.EventInfo = *JDoe* This successfully fires an email…
We're currently doing some research around VMware vCenter logging support with Log and Event Manager. In order to accomplish our research and understand the format of the vCenter logs, we need log samples from vCenter instances, ideally vSphere v6 or v6.5. You can view information on the location of the logs files via this…
Hey guys I have an audit coming up in 1st week January, 1st for this company, and I am on point for SIEM/LEM. - Who has gone through an audit and used LEM?
Hi, I have a Cisco Firepower virtual appliance, and try to see log into LEM. I have configure Syslog as I found here : Configure a FireSIGHT System to Send Alerts to an External Syslog Server - Cisco On the LEM side, I cannot found any log, or information. I try to reconfigure the connector, but without success. Any one…
What reprot format do you export scheduled reports? I initially had it as PDF format, but that does not allow sorting/filtering. The .XLS format is the closest i can get however columns are not aligned.
It looks like you're new here. Sign in or register to get started.