Auditing Group Policy Changes
Hi, Can anyone tell me how to set up a rule to track group policy changes? This is for tracking admin users who modify the Group Policy Object(I am not talking about creating a new one or renaming an...
View ArticleFilter question
I'm just getting my feet wet with LEM. As I was reviewing the filters in the different categories (Security, IT Operations, Change Management, etc), I noticed I can drag and drop filters into...
View ArticleTriGeo Alert - Disk nearly full
I started receiving these LEM email alerts and I am not sure if it is saying my LEM c: drive and what I need to do. This is the message: disk c: nearly full at 2016-05-11 10:07:00.0 There is no other...
View ArticleLogon failed while running LEM reports
Hi, After installing Log and Event Manager Reports, while running a report, its showing this error: Logon failed. Error code: -2147189176, What is this error and how can it be resolved so I can run...
View ArticleSending windows event to centralized source(Kiwi?) and then forwarding.
We currently have all of our non-windows devices send to kiwi, then forward to LEM in remote locations. Is it possible to do something similar with windows servers leveraging something like nxlog or...
View Articlemonitor AD group membership changes
All-I have a large number of active directory groups that need to be monitored. the groups in question all have a naming convention of "SG-servername_Support". I want to be able to have an notification...
View ArticleWhat is CMC Credential ?
Hi all, I am new to LEM, can somebody tell me what exactly is CMC Credential and where do I find it ? Am I able to reset CMC password ? Because previous user didn't leave any documentation. Thanks in...
View ArticleLEM Licensing
Hi,New to the LEM Licensing concepts .. thereby seeking some clarifications here .. Is my understanding coorect -1. One Network switch or a router consumes 1 node license2. One Security device like...
View ArticleConfiguring Cisco ASA Syslog to LEM
Hello all. New Net Admin here looking to get syslog events logging in LEM. So far, I have followed the configuration knowledge base: "Integrating Cisco PIX and Cisco ASA Firewalls with SolarWinds...
View ArticleEmail Notifications How-To
Hey All,Since we haven't had any LEM discussions yet, I thought I'd post a quick how-to on setting up custom notifications. There's a couple of really common use cases for going beyond the out of the...
View ArticleIs there a way to monitor CD rom drive usage?
Is there a way to monitor/notification of CD rom drive usage? So far I can not figure out a way. There are no services that I can think of to monitor. Any ideas would be helpful. Thank you.
View ArticleLEM vs. Kiwi
Greetings!This is a simpleton question, and I think I know the answer to this already, but I'm under a crunch and don't have the luxury of time to actually look for myself, so thank you in advance......
View ArticleRules are not fired in LEM and nothing is shown in ndepth part.
Hi ,I Deployed Solarwinds LEM , assigned an IP address to it and set date and time and deploy some agents. in "Monitor" I see all real time logs but nothing is shown in "Ndepth" Part and no rules with...
View ArticleFlood traffic
My question is in reference to the Denial of service attack. If there is a Denial of service attack on the monitored device than how LEM will react to that traffic? Will it log all the events of DOS...
View ArticleLEM - search performance
We have LEM hosted on a fairly fast SAN, but I find nDepth searches often take longer than the max 20min timeout window. Can anyone share their experience with LEM? There's about one more year left on...
View ArticleTriGeo Alert - Disk nearly full
I started receiving these LEM email alerts and I am not sure if it is saying my LEM c: drive and what I need to do. This is the message: disk c: nearly full at 2016-05-11 10:07:00.0 There is no other...
View ArticlePossible to monitor disk space remaining?
I'm currently using EventSentry to alert me if drives on Windows 2008/2012 virtual machines are running below 5% available space. Can I use LEM to replace EventSentry?
View ArticleLooking for a way to filter out legit password changes in audit logs
when a user's password expires in AD, we first get logon failures, then account changed for Domain Events, next password change, then user properties changed. seeing as we have a lot of users, these...
View ArticleBlock IP Address on FortiGate's Firewall Failing
Hi everyone, I'm having an issue where I setup a rule to block an IP address using the Block Active Response on SW LEM: Using the Block IP Active Response - SolarWinds Worldwide, LLC. Help and Support...
View ArticleRemembering passwords with 6.3.1
Has anyone come across the issue that LEM will no longer remember local user's password after upgrading to 6.3.1? We dont use the SSO function and have a set of service accounts that are used for...
View Article