Hi
I need some ideas about solarwinds LEM. I want to know what logs or events are essential for secure monitoring enviroment.
I want to design dashboards so I want to display hot incidents .
Hi mahzad,
A good place to start is the Log & Event Manager (LEM) - Updated November 18, 2015Library and Support page. You'll find here plenty of information, documentation, and even tutorials.
What's "hot" and interesting will also depend on your environment and what compliance and monitoring standards you're trying to meet. What's your industry? What compliance and auditing rules are you trying to maintain?
we use ISO 27001 and NIST standards,the industry is IT infrastructure for eID card project.
Start off with the canned reports that come with the LEM software and you will have addressed almost all of the low hanging fruit. But as I said in another post re: LEM, define your scope! Are you looking at systems? Network? Applications? Threat detection? All or some of the above? Define your scope and then chart your course with LEM.
