This website uses cookies. By clicking OK, you consent to the use of cookies. Click Here to learn more about how we use cookies.
OK
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Create Post
shay_mt
Level 7
‎10-03-2012 06:57 AM

Security Questions

Hi,

I have a request of our security team to answer of some securty questions that i can't answer because I don't know.

Can you please help me to answer the following questions:

1.      Is the application designed to log transaction events (such as: host name, account identifier, date and time stamp, event type, source IP address, description of the activity performed ,event ID, reason for logging event, source and destination network addresses)?

2.       Does the application log user access activity such as successful logons, logoffs, and unsuccessful logon attempts? 

3.       Is the application designed to log and monitor activity performed by privileged accounts?

4.       Does the application provide built in audit log reports?

5.       Where are the logs saved? And for how long?

Thanks in advance

Shay.

0 Kudos
Reply
5 Replies
sja
Level 16
‎10-05-2012 03:18 AM

Hi Shay

NPM is NMS use to monitor network infrastructure with snmp/trap syslog and icmp.

http://en.wikipedia.org/wiki/Network_management_system

I think you look for SIEM that is realy good to monitor users ,firewall and protocols that running in the wire.

http://en.wikipedia.org/wiki/Security_information_and_event_management

Solarwinds has that

http://www.solarwinds.com/SIEM-security-information-event-management-software.aspx

Other vendors  tools

Splunk

splunk.com

Qradar

http://q1labs.com/products.aspx


0 Kudos
Reply
shay_mt
Level 7
In response to sja
‎10-16-2012 10:22 AM

Hi Sja

Thanks for your replay

I'm afraid I do not understand correctly
I mean is in the Solarwinds system  has its own security logs that can monitor itself

Thanks in advance

Shay


0 Kudos
Reply
sja
Level 16
In response to shay_mt
‎10-17-2012 08:15 AM

Hi Shay

Solarwinds is 100% integratet with MS-AD  (users/groups access control)

From NPM 10.4 you will have Auditing trail (who did what in NPM)

http://thwack.solarwinds.com/message/183338#183338

Hope thats helps

Reply
shay_mt
Level 7
In response to sja
‎10-18-2012 02:58 AM

Thanks Sja

0 Kudos
Reply
ampeh12
Level 8
‎10-04-2012 02:09 AM

I would like to know it to. I cant find the logs in solarwinds folder.

0 Kudos
Reply

SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 150,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.

SolarWinds Customer Success Center Certification SolarWinds Lab
About THWACK Blogs Federal & Government Edit Settings Free Tools & Trials
Legal Documents Terms of Use Privacy California Privacy Rights Security Information
© 2021 SolarWinds Worldwide, LLC. All Rights Reserved.