SLOOOW login to LEM
Does anyone else have an extremely slow login time for LEM? Mine takes around 2-3 minutes to past the username/password screen and into the application. Thanks!
View ArticleClik here to view.
Re: Help with Correlations
Hi there, Thank you SO MUCH for the response and I greatly apologize for the delay. I'm attaching a snapshot of the test group I'm trying to monitor. I put myself in this group and then made some...
View ArticleRe: Help with Correlations
Ah - permissions changes on files/directories are actually tracked via Windows File Auditing (or LEM's File Integrity Monitoring) which is a whole separate can of worms/events. The Auditable events are...
View ArticleRe: SLOOOW login to LEM
If you're using IE 11, try turning on compatibility mode for the LEM server and restarting your browser. (In IE use Gear -> Compatibility View Settings -> Add this website) This has resolved it...
View ArticleRe: Alert for devices not logging?
No, though the suggestion we had recently to be able to alert based on a quantity of events returned from nDepth is very similar and would serve this purpose, OR being able to baseline and detect if...
View ArticleClik here to view.
Re: Rules/Filters advanced refining
No, sadly there's a lot of clicking in your future. This is a good idea, though. Some sort of button that shows the cross-references that this object has or where it's used, which you do see sometimes...
View ArticleClik here to view.
Re: Alert for devices not logging?
In Microsoft style, I'm going to start this response with: Never use the "AnyAlert" group in a rule, as it will cause the LEM to chew through memory like a boss.Never extend the correlation time too...
View ArticleRe: Alert for devices not logging?
Thanks nicole pauls! Since you guys had the nice widgit that shows how long it's been I thought this might be possible to create a rule for as well. Well' at least I wasn't missing anything obvious....
View ArticleRe: Alert for devices not logging?
Thanks curtisi! This doesn't look like a good fit for what I need but I do appreciate the attempt, even if it was a Microsoft attempt.
View ArticleRe: Alert for devices not logging?
Out of curiosity, did the widget show the problem once you knew to look?
View ArticleRe: Help with Correlations
Hi Nicole, When you say to turn on windows File Auditing, you mean inside the Domain Controller correct? Thanks!
View ArticleRe: Rules/Filters advanced refining
That's what I thought.. Thank you for the confirmation!
View ArticleRe: Help with Correlations
You can do it that way, or use the FIM connectors on the Agent.
View ArticleClik here to view.
Re: Unsusual or Suspicious Traffic
Nicole, Did someone follow through with this "We've heard this is a really common topic where people get "stuck" with LEM. If we were to cover it in a blog post, video, or other medium, what questions...
View ArticleAdd feature in orion to be more specific
Add feature in orion web console so that we default made a specific track to identify various interfaces of router uniquely with the help of orion NPM.
View ArticleClik here to view.
Re: Add feature in orion to be more specific
please move this to the NPM forum and also elaborate what you are trying to do. maybe some screenshots of what you are trying to achieve?
View ArticleClik here to view.
Re: Alert for devices not logging?
In Microsoft style, I'm going to start this response with: Never use the "AnyAlert" group in a rule, as it will cause the LEM to chew through memory like a boss.Never extend the correlation time too...
View ArticleRe: Alert for devices not logging?
Thanks nicole pauls! Since you guys had the nice widgit that shows how long it's been I thought this might be possible to create a rule for as well. Well' at least I wasn't missing anything obvious....
View Article