monitor AD group membership changes
All-I have a large number of active directory groups that need to be monitored. the groups in question all have a naming convention of "SG-servername_Support". I want to be able to have an notification...
View ArticleRemembering passwords with 6.3.1
Has anyone come across the issue that LEM will no longer remember local user's password after upgrading to 6.3.1? We dont use the SSO function and have a set of service accounts that are used for...
View ArticleDell Compellent syslog monitoring using SW LEM???
We have several Dell Compellent Storage arrays, and I was wondering if there was a Tool for LEM for monitoring the syslog of compellent? I have found the setting to forward syslog in Compellent, I only...
View Articlesecurity monitoring
Hi I need some ideas about solarwinds LEM. I want to know what logs or events are essential for secure monitoring enviroment. I want to design dashboards so I want to display hot incidents .
View ArticleF5 ASM and LEM - is there a connector?
Anyone aware of a connector being available for LEM for F5 ASM? It could be great to get all the WAF logging over to LEM as opposed to just the management and LTM traffic. If there isn't one, anyone...
View ArticleLEM Windows Node Disconnected
I have a Windows node on my LEM server which has been logging fine, however it's now showing as disconnected in the Manage - Nodes screen and is no longer logging to LEM. The server itself (which is an...
View ArticleConfigure LEM as a SYSLOG Server
Hi, I am currently configuring LEM to monitor a small industrial network, (containing 12 devices). Firstly can someone please confirm that LEM is capable of receiving SYSLOG data.If so, is this a...
View ArticleLEM external powered USB HD
We have a white list for approved devices. It works great for only allowing the approved Blu-Ray/DVD/CD burners, thumb drives, and USB floppy drives. If it is not on the appoved list the device is...
View ArticleTriGeo Alert - Disk nearly full
I started receiving these LEM email alerts and I am not sure if it is saying my LEM c: drive and what I need to do. This is the message: disk c: nearly full at 2016-05-11 10:07:00.0 There is no other...
View ArticleMonitor specific event ID using LEM
Hi, How can I monitor specific event ID and send email alert when that event occur. Let say I want monitor when a service stop in Application log and send an email alert. your guidance are very much...
View ArticleClik here to view.
WannaCry Alert
Has anyone created a WannaCry LEM alert. This threat might have subsided due to the Kill switch but I am thinking others are coming. Based on a few blog posts I have read I created a rule that looks...
View ArticleCheckpoint Firewall monitoring using LEM
Hello There, Is it possible to monitor Checkpoint Firewall using Syslog by LEM? If yes, please guide me what versions of Checkpoint Gaia are supported and relevant configuration for the same. Thank you.
View ArticleLocation of Windows/Solaris Agent Log Files
Looking at the output of checklogs, I can see when, where, and more importantly IF LEM receives events from non-agent devices. This GREATLY helps in troubleshooting. However, I am not sure I can answer...
View ArticleWSUS events
Hi Guys, Is it possible to receive events from a WSUS server?I am using the Vista Security connector, but i only get userlogon/logoff, machine logon/logoff events and actually that is not what i want....
View ArticleWindows Server Login Alert
Greetings,I would like some assistance with configuring a rule that sends an email alert whenever someone logs into a monitored Windows server. This will be either a successful or failed login. For...
View ArticleLEM: Trying to tone down the noise
So I'm going through the Monitor filters and I'm trying to get rid of some of the noise. I don't understand why some of the rules are matching. For example, we have a webserver, and whenever the...
View Articlethwack Store
I have purchased a few things on the thwack store, but did not approve for shipment yet. I want to cancel these items and purchase other one, but i dont see anything where i can cancel this.
View ArticleAD Password Expiration Monitoring
Is it possible to have LEM monitor users' accounts in Active Directory for impending password expiration, then perhaps send a reminder email to them to change their password?
View ArticleBlock IP Address on FortiGate's Firewall Failing
Hi everyone, I'm having an issue where I setup a rule to block an IP address using the Block Active Response on SW LEM: Using the Block IP Active Response - SolarWinds Worldwide, LLC. Help and Support...
View ArticleLEM File integrity monitoring
One of the reasons I chose LEM for an evaulation is it's file monitoring capability. I've searched through the user guide and I can't seem to find how this is configured. I do have the agent running on...
View Article