Clik here to view.
UserLogonFailure.SourceMachine Keeps Being Blank!
What would be causing this? When I run this query... I get zero hits, but when I run this query, for the same time frame... I get 102 hits. Obviously, I want the source machine to help research the...
View ArticleQuestion on Rules Creation & Notification Timing
One of my clients requested a rule to alert if anyone starts scanning on a particular TCP port from the outside. They collect logs from a number of perimeter devices and asked for a threshhold of 10...
View ArticleEmail when Cisco device is accessed
Is there a way to have a Cisco device email when enable or config is accessed on device?
View ArticleTroubleshooting SMTP connectivity?
Hiya.I'm setting up my first LEM server which is on a customer site behind various firewalls and have got as far as configuring email.I've specified the mail host and port number and so on, but when I...
View ArticleClik here to view.
Connect refuse with any nDepth search in Log & Event Manager
Dear team, Sorry to borther you again, this is my first time to search with nDepth tool in Log & Event Manager, an error "General: Connection refused. Check that the hostname and port are correct...
View ArticleI can not get my SWLEMReports.exe to run.
When I try to run my Reports 6.0 I get error msg: "The Crystal Reports run-time engine is missing" and sometimes, "cslibu-2-0-0.dll missing". Uninstalled, Re-ran ReportsAndCrystal.exe, deleted dir,...
View ArticleError adding connectors after upgrade to 6.0
I upgraded from 5.7 to 6.0. Tried to assign a connector to a node and got this error: Retry Count exceeded for handleAgentResponse.Giving up. When I go back into the connectors, it looks like it was...
View ArticleLEM agent question
Does the spop.conf query its info directly from a file on the LEM box? For some reason when installing the agent on a brand new machine the spop.conf is populating with the old appliance IP address....
View ArticleNeed to understand nDepth,correlation,events,filter and alerts
Hi LEM Group, 1) I am new for LEM. can anyone please explain that how i can create a rule in LEM that every command and events of firewall(auditing) will be there. firewall i am using is fortinet....
View ArticleHow to show all LEM events from specific node?
Hi All, Is there a way to filter all events from specific node on LEM? I basically want to make a filter that shows all types of events from a specific node. (Node is already registered and showing on...
View ArticleLEM agent question
Does the spop.conf query its info directly from a file on the LEM box? For some reason when installing the agent on a brand new machine the spop.conf is populating with the old appliance IP address....
View ArticleLEM Thought of the Week: Realistically, how careful can you be about admin...
We all know that if we could restrict the keys to the kingdom, things would work perfectly, right? Well, at least we'd only have ourselves to blame But in the old spectrum of security vs. convenience,...
View ArticleCreating a Custom Filtered Report
Hello, After reading this article SolarWinds Knowledge Base :: Creating a Custom Filtered Report have a feeling that LEM report is not strong side of Solarwind. Few thing i didnt like:1) Quote: "Note:...
View ArticleClik here to view.
nodes lost conectivity
Hello,I have issue. Or maybe you have. Help me resolve it.I've seen picture like that before. But it was only with few netflow devices. So I decide its problem on device side. But today I looked at...
View ArticleNeed to add Domain Controllers to LEM
Hi, We have a new setup of LEM in our environment and we are in the process of setting it up and adding new servers which need to be monitored via LEM. Here is the info: 1. There are at least 2 domain...
View ArticleLEM Picking up two licenses for the same server on two different network IP...
I have servers with two network interfaces for example 10.0.1.1 and 10.0.2.1 we have deployed LEM on the 10.0.2.0/24 network and agents deployed to the servers but for some reason LEM is picking up...
View ArticleEmailing Captured Events In PDF Format
Inside LEM verison 5.7. When generating nDepth queries, I can export the results in PDF format. However, when emailing, there is only one option of sending it via a .csv file. I was told by LEM support...
View ArticleLEM Thoughts of the Week: How do your Security, Network, and Systems teams...
Okay, so it's not exactly "of the week" when it's been a while since I posted the last one. We're back from our temporary lack of good ideas for discussion. Lately we've been thinking a lot about how...
View ArticleConfigure LEM as a SYSLOG Server
Hi, I am currently configuring LEM to monitor a small industrial network, (containing 12 devices). Firstly can someone please confirm that LEM is capable of receiving SYSLOG data.If so, is this a...
View ArticlePURGE DATA SOLARWINDS LEM
Hi Guysanyone know how i can purge growing data (logs) for maintenance the appliance??Regards
View Article