I tried searching for Best Practices, but only found a few documents. Is there a site for LEM Best Practices, common rules, or implementation suggestions? What do you feel is your best rule? Thanks in advance!!
Here's a few best practice links that may help. They need to be consolidated in the documentation.
LEM Best Practices
Audit Policies and Best Practices for LEM
LEM Best Practices for Memory Allocation
LEM Agent Benefits and Best Practices
Best Practices for Log and Event Manager (video)
Steve
I do not think there is an FAQ out there that has common rules or best practices for the LEM product specifically. You can probable find some stuff that is SIEM generic though out there somewhere. There is a new class they started a few months ago that is an intro to LEM. I would encourage anyone using LEM to attend the class. The first half is about installing and configuring of the VM and stuff like that, but there are even some good details and important information in there. The second half they get into some of the more basic stuff of LEM. I hope they bring out another couple of level of the class soon that go more nDepth (see what I did there? ) on how to use LEM and some of the more advanced features of it.
https://customerportal.solarwinds.com/VirtualClassrooms/
You may also want to take a look at this post from adatole . It has some good links, articles, and information in it to get started with.
Free Training: Monitoring 101
SolarWinds also has a LEM YouTube channel with some helpful videos.
Thank you for all of the great responses. This is a wonderful community!!!
Don't forget to check out the LEM Training section on the SolarWinds Support site. The site includes several short videos on how to use key features in LEM. You can also register for a LEM 101 course that begins on Monday September 19th.The course covers LEM deployment, configuration, and fundamental concepts, and use cases to help you get started with using LEM.
