Get the latest news about SolarWinds Security Event Manager (SEM)
Hello, First post here. I have setup a 3Com Baseline Switch 2928-SFP Plus to send logs to my SEM appliance. I know it is sending because I've SSH'ed into the appliance, viewed the local log and I see raw data there. I have my connector setup for 3Com switch, log file "/var/log/local7.log" where I saw the raw data and…
I am looking at the Linux agent installation documentation (below) and it applies to v6 of Linux (configuring a script in /etc/init.d). Installed SEM version = 2019.4 Install the SEM Agent on Linux and Unix It also notes: To configure the SEM Agent to start automatically on boot, add /etc/init.d/swsem-agent (or…
We have a couple of Windows 10 workstations that are running Docker containers. The agents installs successfully on the base Windows systems and picks up the correct OS, IP address and License type (Workstation). The agents show online and have the normal four connectors running that our other Windows 10 systems have…
How can you use LEM (nDepth?) to locate servers or desktops that have initiated a powershell instance/script?
We're using LEM/SEM on some of our networks right now. We're wanting to standardize on LEM/SEM but the licensing is maybe an issue. I have many isolated enclave that are small. It doesn't make sense for small networks with maybe 5 machines on it to have 5k$ instance. Suppose I have many of these. Is there a way solarwinds…
I am trying to configure a filter to identify logon events that occur outside of business hours. I followed the below article on configuring Time of Day Sets, but LEM is capturing all of the login events and ignoring that I say "Do not include Business Hours." Has anybody else had this issue or found a way to fix this?…
We have SEM environment in our organization and seems like firewall logs consume a lot of disk space Is there a way to separate the database of network logs(firewalls) and windows logs? or maybe limit the number of days that I can store for the network logs?
I'm trying to add a syslog node (Synology NAS) and receiving this error. I rebooted the SEM host and tried to add the node again, and got the same message. Any ideas? Has anyone else had issues with adding connectors? I'm on v2019.4. I'm fairly new to this system, so I'm not even sure where to look to obtain more info…
I am pretty new to SEM/LEM. I Created the message tracking log connector and it is green indicating a active connector. I see nothing in SEM as far as exchange message tracking logs. ? When I search for information on setting up filters on how to view the message transfer logs in SEM I find nothing ? Can some one help me ?
I added a new ISR 4331 router it connects through an MPLS. So, it is showing the MPLS IP instead of the internal IP address. I was able to configure other routers when I first installed the SEM to use the internal IP. I am unable to find the article I used to make the change. I am hoping someone might know the commands or…
It looks like you're new here. Sign in or register to get started.