New Log & Event Manager (LEM) Library & Support Page!
We've updated the Log & Event Manager (LEM) - Updated October 16, 2014 support page. This serves as a one-stop shop for all your LEM documentation, how-to's, troubleshooting, and more. You can...
View ArticleLEM with Symantec EndPoint Protection 12 ?
I am trying to integrate SEP version 12 with LEM. The only documentation that found was for SEP v11....
View ArticleCan't install agent on linux OS
Hi All, I'm testing LEM 6.0.1 software for collecting windows and linux servers' syslog. As the configuration guide, we need to install the agent on window and linux server. When installing the...
View ArticleEmail Notifications How-To
Hey All,Since we haven't had any LEM discussions yet, I thought I'd post a quick how-to on setting up custom notifications. There's a couple of really common use cases for going beyond the out of the...
View ArticleSeverity Levels: How are they determined?
Hey all, Does anyone know how the severity levels are determined? We are trying to correlate the severity of Windows Events with the severity levels in LEM, so we can build a filter for just critical...
View ArticleTroubles getting Cisco Ironport/WSA to appear in LEM
I have setup the "Data Security Logs" log in my WSA to send syslog to my LEM server using UDP and Local7. I have verified that the WSA is sending out syslog, but LEM does not appear to be parsing the...
View ArticleWhat connector do I use for Trend Micro InterScan Web Security Virtual...
I do not see the product in the list of connectors on LEM. I'm sending IWSVA's syslog to both LEM and my workstation; my workstation receives the syslog messages but LEM does not pick it up as a new...
View ArticleWho is using LEM as a SIEM working in the DoD?
If so, how are you all using it? I want to use it more than just a log collector or troubleshooting server/application events. I want to use it review security information and events. Review advanced...
View ArticleKaspersky Endpoint Security 10
Has anyone used LEM to monitor Kaspersky Endpoint Security 10 clients? I need to monitor both AV and patching on clients
View ArticleClear the LEM database to start fresh
Hello, Recent LEM purchaser and very happy. I have a LEM environment now - but I'm looking to officially start running on it JAN 1 2015. Until then my old system will be running. Right now LEM is...
View ArticleClik here to view.
LEM agents and log fowarding
Hi All, We are a bit concerned about bandwidth consuption thus I would like to know how LEM agents work. Once installed on the servers, do the agents always sends all possible logs to the LEM Manager...
View ArticleLEM 5.7 Compliance/Disa Stig
I been using LEM for about 6 months, we went through and setup all of our rules. Now I notice that under Compliance There is a DISA STIG rule set template(s). Have these been there the entire time or...
View ArticleLEM reports export
Hello, Is it possible to export LEM reports to a network share rather than to the local drive?
View ArticlePalo Alto config with LEM
Hi All, I'm new to both LEM and PA so looking to make sure I have the correct setup. I've read the KB article SolarWinds Knowledge Base :: Integrating your Palo Alto Firewall with SolarWinds LEM and...
View ArticleLEM - Logs on Windows file copy
Hi everyone, I wanted to know if events are generated when file copy are started between windows workstations, server and to USB key when the remote agent is installed.Thank you.
View ArticleAuditing Windows scheduled tasks run using LEM Agent
Hi all, I am curious if anyone has been able to audit windows scheduled tasks running on a windows server where they have deployed the agent and if so, how they can determine the user account used to...
View ArticleLEM agents and log fowarding
Hi All, We are a bit concerned about bandwidth consuption thus I would like to know how LEM agents work. Once installed on the servers, do the agents always sends all possible logs to the LEM Manager...
View ArticleLEM Log Retention settings
Hi All, How can I check LEM log retention settings? I've already read some discussion about this and learned that LEM is configured to automatically purge the oldest logs, but how can I check if our...
View ArticleWhat connector do I use for Trend Micro InterScan Web Security Virtual...
I do not see the product in the list of connectors on LEM. I'm sending IWSVA's syslog to both LEM and my workstation; my workstation receives the syslog messages but LEM does not pick it up as a new...
View ArticleLEM Monitor restrictions
Fairly new at the LEM and definitely still learning. Does anyone know of a way to set up a filter or rule under the monitor on LEM where you block one type of request and show all the rest.With the...
View Article