The most recent content from our members.
There should be a browser connector or extension which could allow for easier reporting on web traffic. Currently with WebTrafficAudit event is quite ineffective. It could (be a listener and) provide basic information like: * Event time * Hostname * Account * URL * Protocol * Browser version * Page size * Time on site…
I am trying to get LEM to monitor our Kaspersky administration server. I have the Kaspersky Administration Kit connector enabled on the node that is our Kaspersky Administration server. I am not sure if I have it setup correctly though because I am not seeing any events from the connector. I also read that WMI is another…
I've run into an issue with the Sysmon connector on machines running Sysmon v8. The network connect events are no longer properly formatted and information is lost. Below is a screenshot of two events, one from a machine running v8 and one running v7.2. Sysmon v8 added a field called Rule Name to the output, so perhaps…
Hi all, I am wondering if anyone with more extensive experience with LEM have managed to or knows how to get LEM to work with Panda Cloud Antivirus and Informix DB 6.1. Any response is very much appreciated.
LEM currently will receive and store the events being forwarded to a specified location within LEM. When access the LEM from the cmd the selected repository will show the forwarded events, however you can not manipulate the data within the GUI. It would be extremely helpful for some deployments to be able to create alert…
Has anyone successfully done log collection from cisco umbrella on LEM?
Just recently I have been receiving an error when attempting to update my connectors. The error reads: "Error while updating connectors for manager" When I click Show More, I get: "Synchronization with connectors repository has failed." When I do a search in nDepth, the ExtraneousInfo section shows: "Repository…
HI all, we have an application that does not have syslog or RESTAPI support but logs all audit information into a SQL database. Is there a way to grab this data and push it into LEM, Thank you.
I have looked in the console and read through the documentation and I cannot find any mention of an Infoblox connector. I have Google searched and cannot find any instructions on how to ingest syslog from Infoblox. Does anybody know if it can be done? I can see the logs coming in via the CMC>application>checklogs feature…
Hello, We are running LEM 6.2.1 and monitoring a sftp server running on a Linux box. The Linux box has the LEM agent installed and I have no problem receiving authentication events. We would like to also log file transfers. The sftp server is configured for chroot and uses syslog-ng to redirect sftp logs for each user to…
It looks like you're new here. Sign in or register to get started.