SEM\LEM not showing all events
Why does LEM nDepth only show 20 events, console show 80k and Cisco show 31kFor the past day I've been struggling with why the events leaving my Cisco switches haven't all shown on LEM. At first I...
View ArticleSEM Appliance Security Information
Hi,Success Center this information seems a couple of years old.Is there a current version of the Security Information of the SEM appliance itself? After all, this is a Linux system (though...
View ArticleLinux audit log parsing
Hi, folks, I have been asked to implement keylogging on our Linux servers in such a way that we can search the logs and see who ran what command. Step 1 of that seems pretty straightforward: implement...
View ArticleSEM Agent Memory issues
We recently upgraded our SEM appliance from LEM 6.6.0 to SEM 6.7.0. After the upgrade, the appliance went through all of the client nodes (we only use this on windows servers) and upgraded their agents...
View ArticleSEM users: It's time to talk about reporting!
The SEM product team is working on revamping the reporting engine in SEM and we're looking for a few users to give their thoughts on early design ideas. If you're interested in participating in a...
View ArticleSplunk cost can really add up...
If you ever used the licensed splunk you'd know it's licensed by the amount of data you log. Once you convert from free license to paid the price adds up quickly! SEM is node based in price and that...
View ArticleUSB detach rule not working anymore
Hello, We've been using a rule we made that would detach unauthorized USB from the computers, it then stopped working for some reason, we then tried to use the prebuilt template already available, the...
View ArticleView SEE logs in SEM
Symantec Endpoint Encryption (SEE) event logs can be found on client machines under Windows logs > Application > Symantec Encryption (Event IDs 3000-3013, 3020-3023, 3040-3045, 3070, 3071,...
View ArticleConnecting SolarWinds to Cisco FirePOWER using eStreamer
We have a Cisco FirePOWER unit that we want to poll information from and place in a dashboard so that it is easy to see what is going on with FirePOWER. I have been looking and haven't found too much...
View ArticleLEM Database not running
Hi All, I cannot get to start/restart the database. What could possibly be the cause? Regards,
View Article