How can I set 2 Mail Host for the Rule to Send E-mail
Hello all, I am new to LEM. I have 2 mail host, how do i send email using 2 different active email response configured in the LEM's Appliance Connector?If this can be done, is it possible to send email...
View ArticleFirewall Log Management
Hi, Can you please advise if it is possible to collect the logs from Checkpoint firewalls running on Splat or Nokia platforms and pass them to LEM so they can be viewed without the need to log onto the...
View ArticleThreat Intelligence with LEM
How threat intelligence with LEM works for Syslog traffic received from Firewall/UTM? Does it check IP reputation with external threat database or downloads and stores threat database locally on...
View ArticleHow do I configure the SNMP community string for LEM?
I haven't been able to find the setting whereby I can configure the SNMP read-only community string for the LEM appliance, so that I can monitor its health/set up alerting etc through Solarwinds NPM. I...
View ArticleForward an SNMP trap from Solarwinds Orion
Hey guys, I have been using the Solardwinds suite for the last 4 days and so far so good it is a great product. I just have a quick question regarding the alerts configurations. I want that based on...
View ArticleLEM Licensing
Hi,New to the LEM Licensing concepts .. thereby seeking some clarifications here .. Is my understanding coorect -1. One Network switch or a router consumes 1 node license2. One Security device like...
View ArticleIs there a list of LEM Best Practices, or Most Common Rules?
I tried searching for Best Practices, but only found a few documents. Is there a site for LEM Best Practices, common rules, or implementation suggestions? What do you feel is your best rule? Thanks...
View ArticleBlock IP Address on FortiGate's Firewall Failing
Hi everyone, I'm having an issue where I setup a rule to block an IP address using the Block Active Response on SW LEM: Using the Block IP Active Response - SolarWinds Worldwide, LLC. Help and Support...
View ArticleLEM: Create notification of AD account lockout
How can I setup a notification alert when a user is locked out of Active Directory? I am using SolarWinds Log & Event Manager 5.4 Thanks
View ArticleLEM - Ghost Nodes.
Hello, I have a problem what I haven't can solved, in LEM appears several nodes like this: (Imagen LEM.PNG)149192060000014919206040001491920581000... All nodes differents except for the seventh number...
View ArticleSyslog node names?
I have a number of syslog devices pointed at LEM, but they all show up as IP addresses for node name. Is there a way to change the name of these nodes? Thanks!
View ArticleWanted: LEM Consultant
Hi, I am looking for someone to provide some consultancy for LEM based in London EC3.
View ArticleLEM: reporting wrong number of alerts in database maintenance report
Good day everyone in the LEM world. I have ran a cross a weird issues with LEM database maintenance report. When I ran the report it shows about 25 million more events. With the help of another team...
View ArticleOrion Switch Logging Suggestions and Orion Log and Log Alerting Orion Impact
Hey THWACK community, Our company already logs our switch gear to Orion. We are interested to hear from other companies that are logging to Orion and what impact they are seeing on the system. How big...
View ArticleError (115) Operation Now In Progress.
I am trying tupgrade the LEM from 6.2.1 to 6.3.1. I keep getting an error (115) Operation now in progress message. Any ideas to fix this?
View ArticleSorting by field within a user-defined group
Can you sort by a field, such as 'name' while editing a user-defined group and if not, could that feature be added?
View ArticleHow do I export all raw data from Logs/Data?
I would like to get the data, but not in LEM report form, not to mention ndepth crashes and times out consistently. This is for examination by a third party. I have verified that there is 200gigs of...
View ArticleHow to monitor activity by users of the admin group
can someone tell me how to create a rule in LEM to show activity by the administrator user or users in the admin group. Or is there perhaps a report in the SW LEM reports module? thank you......Rick
View ArticleIs there a list of LEM Best Practices, or Most Common Rules?
I tried searching for Best Practices, but only found a few documents. Is there a site for LEM Best Practices, common rules, or implementation suggestions? What do you feel is your best rule? Thanks...
View ArticleLEM Licensing
Hi,New to the LEM Licensing concepts .. thereby seeking some clarifications here .. Is my understanding coorect -1. One Network switch or a router consumes 1 node license2. One Security device like...
View Article