• Build Your Own Syslog Connectors

    • Open for Voting on 20 Feb 2020
    I have a lot of devices that can send syslogs to LEM; however, often there aren't connectors for those logs.  I would love to see a small development environment for creating your own syslog connectors.  I imagine two different ways this could be implemented...
    • 27 Jun 2012 2:31 PM
  • Streamline Reporting

    • Open for Voting on 20 Feb 2020
    I think the reporting capabilities of LEM could be significantly streamlined by doing the following... Remove the reporting tool completely Have all reporting done using the nDepth reports/searches/exports Add the ability for scheduling here Add the...
    • 21 Sep 2012 4:22 AM
  • Ability to Control Log/Event Retention

    • Open for Voting on 20 Feb 2020
    Ability to delete logs after 3, 6, or 12 months. Ability to delete logs per type at different intervals.  For example, keep failed logons for a year, but IIS logs for 6 months.
    • 25 Jun 2014 7:25 PM
  • Provide FIM Connectors for all operating systems

    • Open for Voting on 20 Feb 2020
    Currently, the FIM connectors in LEM are Windows-only. Please provide connectors for all operating systems that LEM supports with agents.
    • 10 Oct 2014 3:30 PM
  • Advanced Networking Options

    • Open for Voting on 20 Feb 2020
    I would like a set of Advanced Networking options that allow me to add additional IP interfaces to the appliance as well as static routes.
    • 31 Jul 2012 7:33 PM
  • Active Reponse Option to Execute Script/Program

    • Open for Voting on 20 Feb 2020
    I would like an Active Response option for system agents to be able to execute a script or program on that system.  We would like to use this to form some integrations between LEM detecting events and some of our other internal systems. In one example...
    • 27 Jun 2012 8:52 PM
  • Agentless pull of event logs or log files

    • Open for Voting on 20 Feb 2020
    We have many critical systems that getting an agent on is a horrendous task and anytime anything goes wrong it will be the agents fault.  So I would LOVE to see an agentless pull.  This could be similar to how SAM looks at logs.  It can have credentials...
    • 20 Mar 2013 7:14 PM
  • Need New User Role - Separation of Duties for Better Security and Operation Management (case #526663)

    • Open for Voting on 20 Feb 2020
    • 1 Comment
    Hello! Currently Security Engineers/Administrators are usually assigned with LEM Administrator role and responsible for creating and managing those security /correlation rules. LEM Administrator role has the power to create LEM rules with actions like...
    • 8 Oct 2013 3:59 PM
  • Add a Label to the system

    • Open for Voting on 20 Feb 2020
    Currently as best I can tell LEM uses the System Name that the system knows itself as.  I would like the ability to add a Label to the system in LEM that would be different than the System Name.  Currently this doesn't seem possible.
    • 6 Feb 2013 8:59 PM
  • Office 365 Audit Log monitoring

    • Open for Voting on 20 Feb 2020
    As good as this product is, there needs to be a concentrated effort to develop connectors or agents that can monitor cloud based services, and more specifically, Office 365.  The demands for auditing activities in cloud is growing as fast the use of...
    • 16 Apr 2018 3:03 PM