Error: Search finished prematurely
Aside from what the words say, what does this mean with regard to problems with the LEM? I got this for the first time today.
View ArticleNew Log & Event Manager (LEM) Library & Support Page!
We've updated the Log & Event Manager (LEM) - Updated 12/18 support page. This serves as a one-stop shop for all your LEM documentation, how-to's, troubleshooting, and more. You can add the page...
View ArticleRecommend LEM on LinkedIn for 300 points!
Let your colleagues know how impressed you are with LEM on LinkedInand earn 300 pointsyou can use in the thwack store. Simply go to this link, recommend Log & Event Manager, and then message...
View ArticleError: General: search ended prematurely
errorAs I was running ndepth searches I ran into this error, all searches return this error, and all my home page widgets are broken (other than events per minute, user logins by source machine, and...
View ArticleLEM Operational Awareness Thoughts
While this isn't a direct Feature Request, I recently read THIS article and immediately though that some of these ideas could be put to use in LEM allowing the product to provide better operational...
View ArticleClik here to view.
Solarwinds Agent : reading Nessus Report
Hello, I'm trying to configure Nessus connector on a Windows 7 PC running the Solarwinds Agent.In the connector (Nessus Report) configuration, I put the name of the directory (default value) containing...
View ArticleLEM agent question
Does the spop.conf query its info directly from a file on the LEM box? For some reason when installing the agent on a brand new machine the spop.conf is populating with the old appliance IP address....
View ArticleWindows 2008 R2 Default DC Policy
Good Afternoon! I thought that I would share a solution for a problem that I found while installing the LEM Agent on Domain Controllers. I ran into an issue where I was not receiving events for...
View ArticleFeature Request - Thycotic Secret Server
Case # 330679 - I would like a connector built to integrate Thycotic Secret Server with LEM. The syslogs are in standard messaging format, and should be fairly straightforward.
View ArticleLEM Report/Alert for Cisco ASA VPN Usage
We would like to create a report for VPN logins/logouts and also have a real time alert for when someone is logged in or out. The device is a Cisco ASA. Any help on whether this is possible or not...
View ArticleLEM vs. Kiwi
Greetings!This is a simpleton question, and I think I know the answer to this already, but I'm under a crunch and don't have the luxury of time to actually look for myself, so thank you in advance......
View ArticleClik here to view.
GPO modified?
What is the best way to find out if a GPO was modified and what change was made? I've tried PolicyModify and DomainPolicyModify with no luck.
View ArticleLEMs Snort
I have been trying to get Snort going on our LEM box and while the process shows up in top. It doesn't appear some of the rule are working. I followed this guide SolarWinds Knowledge Base :: Snort...
View ArticleIssue with custom LEM report
With the new 5.6 Upgrade, it appears to have broken some custom reports we created. Whether that's just my error or not, I don't know. I got login errors when I tried to view them, which led me to...
View ArticleNew Log & Event Manager (LEM) Library & Support Page!
We've updated the Log & Event Manager (LEM) - Updated 12/18 support page. This serves as a one-stop shop for all your LEM documentation, how-to's, troubleshooting, and more. You can add the page...
View ArticleLEM with Kiwi syslog Daemon Service
So I am testing Log & Event Manger and I am trying to pull in the syslog data. I was informed we were using Kiwi syslog server so after doing research I just deployed the agent to my syslog server...
View ArticleForward an SNMP trap from Solarwinds Orion
Hey guys, I have been using the Solardwinds suite for the last 4 days and so far so good it is a great product. I just have a quick question regarding the alerts configurations. I want that based on...
View ArticleLEM vulnerability, how to solve it?
Becauseinformation securitypolicy,Vulnerability scanningmust bedoneusingIPS,There is avulnerabilityscan results follows,How do Irepairit ?HTTP Server Prone To Slow Denial Of Service AttackCVE-2007-6750...
View ArticleFilters best practices
hello ... I am new to the SIEM tools and a fresh graduate from collage. we are implementing the LEM tool in our company and my boss asked me to find the best practice for the filters, meaning what are...
View ArticleLEM to monitor for Network Policy Server errors?
Currently, we use LEM heavily for identifying account lockouts/bad password attempts. I currently use this search in nDepth to find them: ( "Event Name" = UserLogonFailure ) AND ( DestinationAccount =...
View Article