LEM: Create notification of AD account lockout
How can I setup a notification alert when a user is locked out of Active Directory? I am using SolarWinds Log & Event Manager 5.4 Thanks
View ArticleLEM migration from HyperV to VMware
Anybody been able to do this? Since LEM is not typical Linux it initially connects using the VMware Linux migration tool but then fails. Unfortunately we may have to start from scratch and build a...
View ArticleEmail Alerting stopped
Hello, My email alerting stopped for my rules. I checked the diskusage and the EPIC rules queue is backed up. How do clear this? cmc::acm# diskusageChecking Disk Usage (this could take a moment)......
View Articlemonitor AD group membership changes
All-I have a large number of active directory groups that need to be monitored. the groups in question all have a naming convention of "SG-servername_Support". I want to be able to have an notification...
View ArticleIs LEM Reports able to use GMSA
We are trying to setup the scheduled Batch reports. I was wondering if Reports Module will allow me to use a Group Managed Service Account (GMSA) while scheduling the task? Thank You
View ArticleLEM Storage Capacity Alert
Currently evaluating LEM to replace our existing SIEM. We have a requirement that says we have to be alerted when our log storage disk capacity reaches 80%. While we could do this within VMWare, we...
View ArticleNetapp Clustered Data ONTAP CIFS auditing to LEM
NetApp Clustered Data ONTAP creates audit log files on a file share (as far as I can tell it is not able to send the log information via syslog or snmp etc). Does anyone know whether and if so how it...
View ArticlePossible to monitor disk space remaining?
I'm currently using EventSentry to alert me if drives on Windows 2008/2012 virtual machines are running below 5% available space. Can I use LEM to replace EventSentry?
View ArticleDNS traffic sent to 8.8.4.4 flagged as "UnusualUDPTraffic"
How can i exclude this DST IP from the alerts? I just recently took over this solarwinds setup that was only installed but never tuned. My security alerts are getting blown out by all of the false...
View ArticleAuditing Group Policy Changes
Hi, Can anyone tell me how to set up a rule to track group policy changes? This is for tracking admin users who modify the Group Policy Object(I am not talking about creating a new one or renaming an...
View ArticleIs there a list of LEM Best Practices, or Most Common Rules?
I tried searching for Best Practices, but only found a few documents. Is there a site for LEM Best Practices, common rules, or implementation suggestions? What do you feel is your best rule? Thanks...
View ArticleAccounts in admin groups without "admin" or "administrator" in the account name
I may be overthinking this, it seems like it should be easier. We have several accounts that are in Admin groups on several servers, however, their names do not contain admin or administrator or root....
View ArticleLogon failed while running LEM reports
Hi, After installing Log and Event Manager Reports, while running a report, its showing this error: Logon failed. Error code: -2147189176, What is this error and how can it be resolved so I can run...
View ArticleLEM 3.0 template rules
Does anyone know if the template rules in LEM3.0 have been updated? I have some rules (windows disk full) which appears to be triggering off from old events. Not sure if it has been updated from the...
View Articletraffic but no agent
How do you identify workstations/servers with traffic but no LEM agent? Using some of the rules as a basis does not seem to work?
View ArticleBest way to backup Log & Event Manager?
We use Acronis vmProtect to backup our virtual machines and one of the problems I have is the ability to backup the Solarwinds Log & Event Manager virtual appliance. We get the same error from...
View ArticleLEM Demo Working ?
Does the LEM Demo site load for anyone else? I want to take a look at it. I realise it needs flash, I've tried Edge, Chrome, IE and FF. I see a box with loading and progress bar so Flash loads. Though...
View ArticlePossible to monitor disk space remaining?
I'm currently using EventSentry to alert me if drives on Windows 2008/2012 virtual machines are running below 5% available space. Can I use LEM to replace EventSentry?
View ArticleAgent Log Forwarding?
In our environment, we are about to have three different networks. For simplicity, I will call them A, B, and C. The situation:Network A can talk to Network B.Network B can talk to Network C.Network A...
View ArticleIssues with LEM. Advice would be very much appreicated. (ASAP)
Hello. So I haven't touched LEM for a while and was trying to add a node to do some more testing and for the love of me my manager name isn't working (please see attached) It works with the IP...
View Article