cancel
Showing results for 
Search instead for 
Did you mean: 
Create Post

THWACK Tuesday Tip :: How to Quickly Identify Suspicious Network Behavior With Intuitive Dashboards

Community Manager
FEATURED EPISODE:

How to Quickly Identify Suspicious Network Behavior With Intuitive Dashboards

February 18, 2020

Log and event data are a boundless and valuable resource for identifying suspicious network activity and stopping potential breaches. However, analyzing lines and lines of text-based data can make this resource more trouble than it's worth. In this video, we'll explore the different ways you can customize log data in an easy-to-understand and visual dashboard in Security Event Manager to help turn it into something you can act on.
6 Comments
Level 20

I can't see the video (says null If the owner of this video has granted you access, please sign in) but this sounds little like the new HTML5 dashboard we have now in SEM!  The UX team has worked really hard with many of us to get this working better and not in flash finally!  I did a few UX sessions with them and it's getting better with each version.  The new version numbers I was trying to figure out I'm on 2019.4  Does anyone know does the 4 mean 4th quarter?

Bill

Community Manager
Community Manager

Refresh the page.  Unfortunately, this went out a day early because I am incapable of reading a calendar. 🙂

Level 20

Much better now!  I totally agree SEM is much better with the HTML5 dashboard too!

Level 15

Much much better.   as a SEM user, I love it.

 

Level 20

I agree @jeremymayfield... much better now in HTML5... I'm already thinking about figuring out using the html pieces and showing them in Orion.  Did you ever get the root password for your appliance?  Each appliance has a unique root pwd but it's not something you usually ever need.  I keep constant snapshots of my appliance so I can roll back to any point in time on the NetApp NAS.  I used to do it with NetApp snapshots but the past few years I've been using Commvault snapshots because we are using Commvault backup system.  It's saved my bacon a few more times than once.

I've had some issue with the tomcat webserver the LEM and now SEM uses.  For no apparent reason tomcat logs would fill up the /var partition and crash the LEM appliance.  I'm hoping this won't happen now on 2019.4 with SEM.

One thing is for sure... the support guys for SEM know the product really well because many have been with the product since even before SW aquired the product.  They know their appliance.

Bill

Level 15

I probably need to get with you @ecklerwr1  on teh Commvault piece.   I had not thought of that and we run commvault.  I am not sure if i got the Root PW but I was able to get past my issues but reinstalling.   Sometimes it has to be done.  

 

About the Author
Kevin's first computer was the family TI-99/4A. He's learned computing the best way possible: by fixing his own broken machines. He was a SolarWinds customer for nearly 10 years before joining the company. He's worked the range of IT jobs: from the 3-person consultancy to the international law firm. Along the way, he's become a SolarWinds advocate and evangelist of monitoring glory. His passions include shooting archery, blacksmithing, playing D&D, and helping IT professionals leave at a reasonable time each and every day.