The most recent content from our members.
I see a few threads in the forum about this, but not an actual feature request. So, hopefully I'm not doubling up on this. There doesn't appear to be any auditing around the creation/updating/deleting of discovery profiles. Unfortunately, anybody with node management rights can edit or remove these discovery profiles, if…
In particular, I had a need to find out who assigned a role to a user that was not supposed to have that role. This was especially concerning since, besides a couple of Managers that did not make that change, I am the only IPAM Admin in our environment. What I was told was that this type of change is not logged unless…
Building off this report by including extended account permissions that are found in other tables. [View:/cfs-file/__key/communityserver-discussions-components-files/46/Account_2B00_Report_2B00_and_2B00_Extended_2B00_Permissions-_2800_enabled-accounts_2900_.xml:320:240]
Government Auditing Report (Configuration Document) requires to have all Nodes Monitored in Solarwinds that shows the following: 1. All Monitoring assigned per node (CPU/Memory/Volume/Application/Components etc.) 2. Show all the threshold (warning and critical) for all those monitoring assigned per node 3. Show all the…
In the "All Active Alerts" page, a user may delete a triggered instance of an alert by selecting an alert and clicking the "CLEAR TRIGGERED INSTANCE OF ALERT" link at the top of the grid. When an alert is cleared this way, the AlertHistory table is updated, but the AuditingEvents table is not updated. Solarwinds already…
The muted alerts is nice. But who did it? Would be nice to audit this.
Hey all, Inheriting a fairly large solarwinds implementation. I was curious what is the best way to know what user setup a particular monitor? We are seeing groups set things up but not responding when they break and I am trying to back track who to contact in order to remove or update the monitors.... Thanks in advance!
As far as I just found ou there is no possibility to Audit failed Logins to the Web-Console. For Compliance and Admin Safety reasons I think there should be the possibility to alert when one user has many failed logins within a small time frame. Regards, Holger
It's weird - our DCs have been happily supplying UDT with good info for the last year. After testing, we roll out the latest MS updates to our DCs and 4768 just stopped generating on the DC side. Anyone else seeing this issue? Thanks!
I currently have some component monitors set on our DC to flag Microsoft Security Auditing for ID 4740 (Account lock) and 4767 (Account Unlock). Quick questions on the configuration though, maybe someone can offer some insight on. For an account lock the node shows a down component and sends an email alert if event 4740…
It looks like you're new here. Sign in or register to get started.