The most recent content from our members.
I am trying to get LEM to monitor our Kaspersky administration server. I have the Kaspersky Administration Kit connector enabled on the node that is our Kaspersky Administration server. I am not sure if I have it setup correctly though because I am not seeing any events from the connector. I also read that WMI is another…
I would like a way to stop NT Authority\System coming in from FIM. I open a file and 9 out of 13 events is from NT\System Not just filters. I would like the events to not even hit the LEM. The less events it has to store the better. IMHO the fact that NY\system did anything to a file doesn't help in auditing. Need to know…
Hello, Background We are just rolling out LEM (6.2) and have hit a speed bump while configuring our Linux infrastructure for LEM. After installing the linux agent on a RHEL 7 box (first one we've tried, and our current standard), I configured the connectors for that node via the LEM console. I was also mindful to reference…
Does anyone else is having difficulties importing certificates into LEM via PuTTY, I am having issues doing so, I spoke with support and they offered an instructions to follow, I'm following the steps to the letter and no luck, I get the following error message: + keytool error: java.lang.Exception: Reply has no…
i am trying to get rules to send actions to #Slack i am not seeing any direct way to do that. i have NPM connecting using web hooks and love it. but would really like to send to Slack. anyone know a good way to do this?
I will be migrating an L4 SIM (6.2.0) to a virtual LEM under VMWare. I had planned to have a single LEM and not a pair like the L4 SIM (Manager and Database). The migration process would normally be to import the config from the SIM (Manager) into the LEM, but will there be anything in that config that would want to point…
Hello thwack! I am fairly new to LEM and all of the features it has to offer. I have been doing some reading up on WMI and some of the potential security flaws (and fixes) that it has to offer. Based on my research, I was wondering if anyone here has experience with drawing up rules in LEM to fire based on WMI events being…
I am running 6.2.0RC1. I have FIM running on a file server and pointing to one folder. I get a lot of events with NT Authority\System in it. One file opened creates 8 events. 5 of 8 are from NT\System Because they dont tell me anything about who did what i am trying to filter it out. I have set this filter but still get…
Has anyone successfully created a custom Crystal Report and been able to preview the data using the AlertDBDSN? The report template indicates the DSN connection is automatically created for me, but it wasn't. I've tried using HSQLDB JDBC drivers. I see the scheme and fields but wasn't able to render data. Any suggestions???
We recently migrated some of our sites to a system running WAMP from a Linux box. We were getting desired logs through LEM before and would like to keep doing it in the new configuration. Is there a way to get this done? We are running the most recent version of LEM 6.2. Thanks in advance. Vicky Barraza
It looks like you're new here. Sign in or register to get started.