• State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 22 subscribers
  • Views 451 views
  • Users 0 members are here
Options
Related
This discussion has been locked. The information referenced herein may be inaccurate due to age, software updates, or external references.
You can no longer post new replies to this discussion. If you have a similar question you can start a new discussion in this forum.

LEM Agent Alarm Notifications and Triggers

acgarcia1

Hi,

 

After installation of agents into window users, what are the steps to provision in order for the agents to send notifications to the LEM console? Also, how to provide triggers once notifications have been recieved by the console? I guess, the same holds true for cisco routers and switches once it has been configured to send syslog messages to the LEM Manager?

 

Thanks.

 

Regards,

Aaron

  • 0

    Hi, Aaron.

    Provided the computers that have the LEM Agent installed have network access to the LEM Manager (i.e. no firewall in the way), the Agents should connect automatically. The LEM Agent for Windows has three tools configured by default, so you should start getting alerts for these resources immediately: Windows Security Log, Window System Log, and Windows Application Log. If you want to see additional alerts from these computers (AV alerts, for example), you'll have to configure a tool for each additional product. You can set up new tools for your LEM Agents in the Manage > Agents view under Agent gear icon > Tools.

    Regarding your devices that are logging to the LEM Manager, their tools are set up on the Manager side. This can be done in the Manage > Appliances view under Manager gear icon > Tools.

    If you're looking for more detailed information about setting up rules, filters or specific tools for email alerts, console notifications (blinking filter names, popup messages, etc.), or alerting for complex devices, respectively, please check out our knowledge base at http://knowledgebase.solarwinds.com.

    While there, you might also check out KB3249 for links to several related training videos.

    Let me know if I didn't answer your question.

    Thanks.

  • 0 in reply to phil3

    Thanks Phil,

     

    Do you have any steps or procedures that would help me accomplish the following:

    1. What are the steps or procedures on how to use' the event correlation' ,like, I need to know the relationships of any number of events with some identifiable patterns - relationships between events.

    2. What are the steps to collect logs from Cisco Iron Port S Series web filter? Is there any plugin to install or a tool where i can activate logging on this machine and what are the steps or procedures?

  • 0 in reply to acgarcia1

    This question was addressed in the following thread: LEM Event and Log Correlation.

    Thanks.

  • 0 in reply to phil3

    Thanks Phil for the answers. They are very helpful.

SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 195,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.

SolarWinds Customer Success Center Certification Media Vault Link Accounts
About THWACK Blogs For Government Edit Settings Free Tools & Trials
Legal Documents Terms of Use Privacy California Privacy Rights Security Information
©2024 SolarWinds Worldwide, LLC. All Rights Reserved.