Clik here to view.
Re: Using a Threat Intelligence Feed with LEM?
The blog that was referenced earlier is the best source of information on the topic. A short version of that is, we have a list of regularly updating known bad IP addresses. This list is intentionally...
View ArticleRe: security monitoring
Start off with the canned reports that come with the LEM software and you will have addressed almost all of the low hanging fruit. But as I said in another post re: LEM, define your scope! Are you...
View ArticleRe: can LEM be accessed on Orion web console
Oddly enough, when I was sitting on Santa's lap a few weeks ago I asked for the very same thing. He said he would get back to me. I gave him @jhynds name as a POC. So get ready for a call @jhynds....
View ArticleEnergy Federal Credit Union: Very good Case study for LEM
http://solarwinds-marketing.s3.amazonaws.com/solarwinds/CaseStudies/solarwinds_efcu_case_study.pdf?CMP=EMC-MKT-PD !L_LEM_U… I can't even manage my Windows Logs on one PC let alone think about about...
View ArticleClik here to view.
Re: Energy Federal Credit Union: Very good Case study for LEM
We are equally pleased with LEM.. As we all know (CU's that is)... every year the questions mount on analysis and monitoring from our regulators.Great write up for you... nice work thecommodorekid
View ArticleClik here to view.
Re: Energy Federal Credit Union: Very good Case study for LEM
Thanks, I didn't write up the Case Study just posted it because I personally had been digging through my windows logs trying to figure a problem out when I posted that out of frustration. Because when...
View ArticleClik here to view.
LEM with F5 SWG
Hi all,Has anybody has experience monitoring F5 Secure Web Gateway Services with LEM?We are thinking to deploy F5 SWG and want to proccess the log througfh LEM.Can LEM works with F5 SWG? Among...
View ArticleRe: General Guides I wrote up for performing some basic LEM tasks
That is a useful guide. I don't think I had previously seen that one. Thanks for linking it.
View ArticleClik here to view.
Re: General Guides I wrote up for performing some basic LEM tasks
I wanted to update as I have started to develop a way to monitor for Cryptolocker activity on our file servers. It's taken a fair bit of testing and is certainly not complete, but I also wanted to...
View ArticleClik here to view.
Add a connector for Applicure dotDefender
I need to add a connector on a managed server for Applicure dotDefender Web Application Firewall. I don't see this product in the list of built in connectors. Is there a way to create a custom...
View ArticleClik here to view.
Re: Add a connector for Applicure dotDefender
If you have a maintenance agreement on LEM with Solarwinds, this is something you should contact Support about. In any case, you can also create a Feature Request here on THWACK.
View ArticleRe: General Guides I wrote up for performing some basic LEM tasks
whpdThanks for sharing your work.If you look at the Rules section of the eval guide, you will find examples of how you can create correlation rules that tell when there are more than X FileWrites in Y...
View ArticleCISCO VCS & LEM logging connectivity
Is there anybody who can point me in the right direction concerning correctly configuring logging from the Cisco VCS to the LEM Manager? I am using VCS control and expressway versions 8.5 and LEM...
View ArticleClik here to view.
Re: AD authentication in LEM
So in 2016 and we still have to put the fqdn\username instead of domain\username? Is this ever not going to be a feature?
View ArticleClik here to view.
How to customized reports solarwinds LEM
Hi All How to customized reports solarwinds LEM ? example :
View ArticleMy IT Resolution is to learn more about LEM and integrating it with other...
Such as STIX/TAXII and some of the other OSINT that are available. I think that Threat Intel sharing is one of our best ways to provide better defense ASAP. It is also has a low barrier to entry,...
View ArticleRe: CISCO VCS & LEM logging connectivity
Starter for 10: Is LEM and your VCS on the same network? If not, check the necessary firewall ACLs are in place to allow the communication between the two.
View ArticleRe: CISCO VCS & LEM logging connectivity
Which documentation are you referring to? I don't see any available connector for Cisco VCS
View ArticleDirectory monitoring
Is it possible to monitor directories in the same way files can be monitored? I have some FIM monitors set up to alert me when files are deleted, and that works fine. I can't get alerts to work for...
View ArticleF5 ASM and LEM - is there a connector?
Anyone aware of a connector being available for LEM for F5 ASM? It could be great to get all the WAF logging over to LEM as opposed to just the management and LTM traffic. If there isn't one, anyone...
View Article