Re: Windows share mount error
Out of curiosity, does creating a share on a Windows server and directing the LEM there work?Has the NetApp share ever worked?
View ArticleRe: Best way to exclude folders in FIM 6.1
I'm also looking for an answer to this question. As an example scenario, I'm monitoring a file system on a SQL Server database server. I want to know every time a file is created on the system with...
View ArticleRe: LEM Rule Correlations – Group vs. Individual
Curtis, Thanks again for the quick reply. T.J.
View ArticleClik here to view.
Re: Review of Exchange Informational events
We do have an Exchange Event Log connector - try turning it on on your Exchange agent and see if it pulls in what you need. It's called "Microsoft Exchange Application Log" and it's in the category...
View ArticleRe: FIM multiple events?
Generally it happens because this is (unfortunately) literally what's happening at the Windows level. We are looking at what kind of event consolidation we could do in the future, but it's tricky to...
View ArticleRe: LEM High Availability
Good call Anthony, just wanted to follow up that I'll file a request for our InfoDev team.
View ArticleRe: Review of Exchange Informational events
I did configure that connector, but the information I am looking for is in an "Informational" event message generated by System Attendant. The connector doesn't pick them up, only Warning and Error...
View ArticleRe: Review of Exchange Informational events
We should be able to add them to the existing connector if they are of interest - if you can provide an evtx either to me or file a support case we'll take a look. Chances are they were...
View ArticleRe: Review of Exchange Informational events
I am interested in EventID 9017, 9018 generated from source MSExchange Assistants and 10027 generated from source MSExchangeMailboxAssistants. Basically, they are summary events of exchange database...
View ArticleObjectAudit too many of them
Hi Dears, i have noticed that ObjectAudit related logs are too many of them in my LEM server. How i can bring it down to reasonable numbers by only selecting important ones from the...
View ArticleRe: ObjectAudit too many of them
It is best turn off at the source via group policy. See guidelines in the KB below SolarWinds Knowledge Base :: Audit Policy and Best Practice
View ArticleRe: ObjectAudit too many of them
Hi mate, Thanks for the link and I understood how it is coming. But recommendation is telling that it should be fixed via GPO at domain level. But would like to understand any possibilities to...
View ArticleClik here to view.
Re: ObjectAudit too many of them
The Agent reads everything that goes into the logs that it is configured to read. There is no option to drop events at the Agent level, so if you want to avoid getting an event, you need to get it out...
View ArticleRe: Review of Exchange Informational events
Can you export some of those events from your Exchange server as EVTX and attach them here or open a support ticket with the info so a connector request can be made?
View ArticleRe: ObjectAudit too many of them
Yeah, there's no agent-side filtering, and the only manager-side filtering is not very granular (i.e. you can turn off ALL ObjectAudits from being sent to your console/database/correlation rules, but...
View ArticleClik here to view.
Re: Windows share mount error
Do you see anything in the event logs/audit logs on the share side? A successful or failed logon? Input/Output error is interesting - that's more like trouble reading or writing to the share. The old...
View ArticleRe: Success Stories of gaining operational value from LEM
I've had responding with more thoughts on my to-do list for a while, but never got around to it... so here's some thoughts on the examples I listed. 1. Company has a situation where downtime directly...
View ArticleLocation and Name of Local Agent Installer Log
All, While attempting to install the Local Agent Installer on a Windows 8.1 machine, one of the screens displayed the following: “The installation of SolarWinds Log & Event Manager Agent is...
View Article