Using a Threat Intelligence Feed with LEM?
I am curious if anybody out there is using LEM in conjunction with a Threat Intelligence feed? I realize that LEM doesn't currently accept any of the feed protocols; however, I have seen that some...
View ArticleLEM Linux agent connects but no logs
I am struggling with getting a Open SuSE Linux server to log to my LEM. Details:LEM 5.4Linux Client 5.3.1Linux OpenSuSE 11.2 It installed and even connected to the console. I created the Pam, Audit and...
View ArticleHow to reduce footprint of Windows Service accounts
Hi there, I was wondering whether anyone had any advice on how to tune out the volume of events received from Service Accounts? I have followed the auditing policy as per...
View ArticleFIM Compliance with Log & Event Manager
I am curious how the FIM capabilities of LEM meet specific compliance requirements, specifically as it pertains to PCI DSS 3.0? Does the Windows FIM capabilities meet PCI DSS 3.0 requirements?Can you...
View ArticleLEM agent question
Does the spop.conf query its info directly from a file on the LEM box? For some reason when installing the agent on a brand new machine the spop.conf is populating with the old appliance IP address....
View ArticleCreating an alert if source is always the same?
I'm trying to generate an alert if there are multiple failed login attempts from the same IP address, regardless of the username. The part I'm having trouble with is telling LEM to only alert if it's...
View ArticleNeed LEM agent UNinstaller
Where can I get the manual uninstaller for the LEM agent? It does no good to tell me to get it from the customer portal because I was just evaluating the software. Would be nice if you would make the...
View ArticleKaspersky Endpoint 10
I am trying to get LEM to monitor our Kaspersky administration server. I have the Kaspersky Administration Kit connector enabled on the node that is our Kaspersky Administration server. I am not sure...
View ArticleAgents unable to connect with LEM server
Hi, I've installed LEM agent in few servers within my environment and a small number of them are in disconnected status in LEM. My verification from spoplog has shown below error: (Thu Nov 27 11:04:08...
View ArticleLEM Agent Node Not Show
Hi, I'm new with Solarwinds LEM. I try to adding Agent node, The Agent is already installed on my Windows system but the node is not appear in my LEM Console. I closed the firewall, check the Agent...
View ArticleKaspersky Security Center Connector
We have completed the configuration of Kaspersky connector in our LEM appliance (v6.3.1), we would like to know whether the connector is working fine and all Kaspersky Security Center events were...
View ArticleMS Azure Logs
Are there any plans to collect data from MS Azure The sort of things I am interested in are NSG logs and Azure Key Vault access logs
View ArticleCannot login LEM web portal
I am doing a LEM POC and creating some rules and configurations.however, the web console becomes slower and slower,finally, i cannot control the appliance. we have tried to refresh the web portal, use...
View ArticleTriGeo/LEM Alert Rule - User Lockout...how to add DC info?
I have a TriGeo/LEM rule that kicks off it an end user's account is locked out after so many attempts and it works great. I would like to have the email also include which domain controller it pulled...
View ArticleWhy is IP Protocol 103 PIM alerts being triggered
I am getting repeated security alerts in LEM stating that IP Protocol 103 PIM is being detected as a "non-standard protocol or event" but I'm not sure what is triggering the alert or how to mitigate...
View ArticleHow to monitor activity by users of the admin group
can someone tell me how to create a rule in LEM to show activity by the administrator user or users in the admin group. Or is there perhaps a report in the SW LEM reports module? thank you......Rick
View ArticleClik here to view.
How to customized reports solarwinds LEM
Hi All How to customized reports solarwinds LEM ? example :
View ArticleCrystal Reports with LEM Database
Install full version of Crystal Reports and I am unable to connect to the LEM Oracle Database to customize reports. This seems like something that someone has successfully done. Unsuccessful attempts...
View ArticleLEM: Temp filesystem is over 90% full
I'm new at managing our company's Log & Event Manager application and am trying to discover the cause of a problem that I've noticed over the past couple of days where LEM will display an incident...
View ArticleIntegrating Cisco Nexus switch with LEM
I am trying to integrate Cisco Nexus 5K switches with LEM as a syslog node, but having no luck. Does LEM support NX-OS? I found the attached, which was very helpful while integrating an ASA, but...
View Article