This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

CMC No Logging? Really?

Anybody ever wonder why SEM has an administrative account CMC that doesn't log when it's used and you can't alert off of it?  Do you run any product, let alone a security product, that doesn't log logon or logoff events either success or failure on all accounts, especially administrative accounts?  After allowing all of us customers to be breached through Solarwinds Orion hasn't Solarwinds made it a priority to fix known and requested security controls and gaps as glaring as this one?

Parents Reply
  • By default SEM does not log when someone successfully or fails to login with CMC.  This is still the case.  The administrative account CMC does not log and cannot be alerted on etc.  Continues to be a very serious vulnerability and flaw in this product.

No Data