Re: Widgets - Nothing Displayed To Domain User
Just wanted to add, usually we see this when you do:Log in as one userAdd/create a new userLog out and back in as that new user WITHOUT RESTARTING your browser Something happens that corrupts the state...
View ArticleRe: Setting up FIM, Directory/Registry to monitor is blank
Would definitely recommend using 6.0.1 manager and 6.0.1 agent if at all possible, or using the 6.0.0 hotfixed agent in the meantime if it's the NT AUTHORITY\SYSTEM issue you're working around. I can't...
View ArticleRe: LEM Syslog messages not working for APC UPS
I double checked the list of connectors and everything marked APC is used in discovery (there's a few connectors that are greedy and would match everything so they are excluded purposefully rather than...
View ArticleRe: Configure LEM to take Sophos UTM Syslog's
Did you try the connector for Astaro by chance? We haven't corrected the name. (Now that I think about it, I saw a request to rename the connector and you might be the reason... )
View ArticleClik here to view.
Re: IIS 7.5 log time discrepancy
This sounds really irritating, to say the least - did you report this to support by chance?
View ArticleClik here to view.
Re: Setting up FIM, Directory/Registry to monitor is blank
Our LEM was not at 6.0.1 and after upgrading to that, it works!!!! Thanks again everyone for their help!
View ArticleClik here to view.
LEM Customized Report
Hi All, good day! I would like to customize my LEM report so that it will display User Log on and User Log off time and the Log on duration. Something looks like the table below. Detection IP...
View ArticleRe: LEM- No information is being display on the customize report
Hi All, thank you so much for the reply. I managed to resolve the problem. " No information is being display on the customize report" by replacing the genericalert.insertion time to...
View ArticleRe: LEM Customized Report
While I can't really help you with this problem, it actually seems like a really good feature request for the product to be able to do this out of the box.
View ArticleClik here to view.
exchange 2013 shows logon failure but no username
Hello, I apologize if this has already been asked, (and I did trying to do a search for these keywords but returned nothing), but I am seeing UserLogonFailure events on my SLEM however their is no user...
View ArticleClik here to view.
Re: LEM - Reports Performance
I to am seeing ridiculously slow reporting times. I'm not very impressed yet with this product to be perfectly honest. Trying to find information is harder than it should be.
View ArticleRe: LEM sensor/analyzer deployment for multiple sites
What is the main driver for a "sensor" in each site? Is it bandwidth conservation? or a security concern?See the section on using a detached Syslog...
View ArticleRe: LEM sensor/analyzer deployment for multiple sites
Hi HolyGuacamole, Yes main concern for this is bandwidth . actually i am not aware of distributed type of deployment. could you please help me to understand that what is sensor and what is analyzer...
View ArticleRe: LEM sensor/analyzer deployment for multiple sites
Sensor and Analyzer are not really LEM terms. But if you look at the architecture, we are saying you can place a Syslog server in a remote location to capture the raw logs from the devices in that...
View ArticleRe: LEM sensor/analyzer deployment for multiple sites
Thanks HolyGuacamole, please let me know about some points: > All the agents that are installed on syslog server, will be licensed based?> what will be the compression ratio(a rough idea)>All...
View ArticleRe: LEM sensor/analyzer deployment for multiple sites
1. The agent installed on the syslog server will need 1 node license. If you have say 10 routers in a remote location sending logs to central LEM server, it would use 10 node licenses. By using a...
View ArticleRe: LEM sensor/analyzer deployment for multiple sites
Great HolyGuacamole, > According to evaluation guide, only one source is sending logs. if we have multiple source at each location then should we create seperate-2 connectors and set the log...
View ArticleInstalling LEM agent on MAC.....
we are seeing that the agent will not shutdown gracefully when shutting down the MAC..... anyone else seeing this issue?
View ArticleRe: LEM sensor/analyzer deployment for multiple sites
Where does it say "one source" only in the evaluation guide? It is up to the Syslog server to handle rotation, retention, etc. LEM doesn't delete them
View Article