SQL2016 >> MSSQL Auditor - Is there a profiler template available?
I am currently evaluating setting up database monitoring for Solarwinds LEM and the instructions advise me to import a profiler template and then edit this template. I am using SQL Server 2016. When I...
View Articlefailed logon every 15 minutes
I receive a failed logon every 15 minutes from the same user account. This user is out of site and it does not seem like an interactive logon. Any ideas?
View ArticleUsing a Threat Intelligence Feed with LEM?
I am curious if anybody out there is using LEM in conjunction with a Threat Intelligence feed? I realize that LEM doesn't currently accept any of the feed protocols; however, I have seen that some...
View ArticleEvent Log Forwarder is not working!
Hi Team, how are you? I'm trying to setup Event Log Forwarder on Windows 2016 to log on my Syslog-ng Server. No messages are going to my syslog. Any ideas? the server, UDP port are setup correctly. The...
View ArticleNetapp Clustered Data ONTAP CIFS auditing to LEM
NetApp Clustered Data ONTAP creates audit log files on a file share (as far as I can tell it is not able to send the log information via syslog or snmp etc). Does anyone know whether and if so how it...
View ArticleClik here to view.
LEM - Where is Everything
Ever wondered what goes on in the background behind the blue LEM appliance screen? We will have a look even though it is slightly concerning i can do this bur nevermind.Fistly all your logs are stored...
View ArticleLEM Agents Remote Deployment
Hi there, I am trying to install LEM agents remotely on Windows machines using Windows remote agent installer. The machines I am trying to install agents on were not found automatically by the agent...
View ArticleInstalling antivirus (Symantec Endpoint Protection) on LEM Server
Hi,Due to security compliance policies, i need to install antivirus (Preferably Symantec Endpoint Protection) on LEM server. Is it supported? My LEM is VMWare appliance.
View ArticleClik here to view.
Rule to kill communication with malicious IPs
Hello, What would be the best way to go about switching off communication with a malicious/compromised/blocked IP that is fed from Thread Intelligence Feed or manually inserted into UDG from Emerging...
View ArticleLEM Best Practice Options for Security Logging?
Hello Team...I was wondering in terms of "Best Practice" tracking for the PCI, NIST, Security logging...is there such a thing as "Best Practice"?In other words, when I look at the different sections...
View ArticleLEM - Change notification email for all rules
Hi. Hi have set up SLEM... in the configuration (can´t remember when) i declared one email address so all notifications are redirected to that email. I see I can change (or add) emails to get...
View ArticleConfigure LEM as a SYSLOG Server
Hi, I am currently configuring LEM to monitor a small industrial network, (containing 12 devices). Firstly can someone please confirm that LEM is capable of receiving SYSLOG data.If so, is this a...
View ArticleAD new user
Hi, I've set up a new alert for new AD users but I don't get who created the account, just the account created. I need a template with the following: User created:Created by: Time & date: If any...
View ArticleExpired Certificates
Hi, Does anyone know if you can create alerts for certificates that are about to expire or have expired on a network? Thanks, Michael
View ArticleLEM upgrade on Linux
Hi I am new to LEM. We have LEM installed on a linux box that has not internet access. Although I can give it access to network shares. I am looking to upgrade from version 6.4 to 6.5. How best can I...
View ArticleRule Notification for Unauthorized USB is attached to the agents
Tested and working for:Our e-mail response connector is enabled and working.We have enable the USB-Defender Policy connector and uploaded a notepad for USB devices that are white listed.Also, included...
View ArticleLEM Best Practice Options for Security Logging?
Hello Team...I was wondering in terms of "Best Practice" tracking for the PCI, NIST, Security logging...is there such a thing as "Best Practice"?In other words, when I look at the different sections...
View ArticleRSL Error (LOG & Event Manager)
Dear All, I am getting RSL error Flex Error #1001: Digest mismatch with RSL Redeploy the matching RSL or relink your application with the matching library.I have tried following steps but unable to...
View ArticlePossible to monitor disk space remaining?
I'm currently using EventSentry to alert me if drives on Windows 2008/2012 virtual machines are running below 5% available space. Can I use LEM to replace EventSentry?
View ArticleClik here to view.
Widgets - Nothing Displayed To Domain User
We are conducting a trial of LEM, and the appliance was setup yesterday. We have the domain connector configured, and are able to login as a domain user. We also connected a test node to it. I noticed...
View Article