Re: Question - Hidden event
In addition, make sure "Triggered Events" are enabled in your logging options. Then examine the domain and server logs to see if the event is showing up as having fired twice. Part of the logging...
View ArticleRe: Mastering the filter/rule Creation Engine...
A good real world example rule is based off the rule template Critical Account Logon Failure. This rule is great at catching someone trying to guess user passwords without locking accounts. For...
View ArticleClik here to view.
Last Reboot has two different values for the same node
My Summary View --> Node Details has the wrong Last Reboot date while the Asset Inventory --> Operating System --> Last Boot is correct. I need to build a report for All nodes that rebooted...
View ArticleRe: LEM Security Rules for Firewall Logs
There is alot of different things in these replies to address. If I miss any, my apologies. LEM can primarily be used in conjunction with your firewalls to look for failed logon attempts(Template...
View ArticleRe: Client User AD Login
Ok, let me make sure I understand correctly. You want to limit it so that only certain groups in AD can login to Serv-U? If so, the easiest way to do this is to only define home directories for the...
View ArticleRe: FoE - Help us Help You
I didn't even know what FoE was, so I think you have my answer already.
View ArticleGrayed Out VMs
Hello, I am pretty new to monitoring hypervisors. Currently i have an implementation for VMWare when i click on a VCenter Host, and drill down to a Host within one of my clusters i see virtual machines...
View ArticleRe: Client User AD Login
Correct, that's exactly what I want. So I have removed the home directory in the Default Windows User Group and now I get "Error: No home directory for this account". I did add the home directory to...
View ArticleClik here to view.
Domain Event - File Management Rule Success
What would an example event Message look like for this File Management Rule Success and Error? I pasted the following from the Help Documentation but only Date/Time into the Event Message but none were...
View ArticleRe: Mastering the filter/rule Creation Engine...
Another good rule template is called the Kill Suspicious Process Requirement for this rule: Group policy enabling process tracking. (Caution: process tracking can be very chatty, not all environments...
View ArticleUpdating to LEM 6 Data Concerns?
Hi guys... We have LEM 5.7 and want to update to LEM 6.0 ... Naturally there is invaluable log data which needs to be preserved in the process. Are there any issues regarding data...
View ArticleClik here to view.
Re: SAM AppInsight for Exchange Error Code: 1219
Based on the error message above it sounds like you may have attempted to configure the server already using a different account that had permissions to access the server, but did not have permissions...
View ArticleRe: UserLogonFailure.SourceMachine Keeps Being Blank!
Can you post any event example out of the 102 hits you do get? My initial thought is that it might have something to do with the LogonType.
View ArticleRe: Custom SNMP Device Templates
You may need to ask that your case be escalated before you find someone who's familiar with SNMP.Since they have their own MIBs surely someone in that company is familiar with SNMP.
View ArticleRe: Login Failure Doesn't Detect IP
curtisi thanks for the update! Unfortunately this makes it very difficult to track the activity back to specific systems unless you know the naming convention. It sounds like this is expected...
View ArticleRe: Grayed Out VMs
One more idea: Sometimes this can happen when the device is already managed by Orion under a different IP address or when the address is the same for two different nodes. Can you search Orion for...
View ArticleRe: SAM Database Maintenance Is Overdue
Running maintenance does not stop polling, alerting, etc.. In other words, no down time is incurred as a result of running database maintenance. You may find the Orion web interface a little sluggish...
View ArticleClik here to view.
Re: Re: "No activity to report" on a web console built report on NPM 10.6
I have tested this in both the web reporter and the legacy report writer with no issues on either one... Legacy Report Writer: The only thing I could see your error occurring with would be a lack of...
View ArticleClik here to view.
Re: SAM AppInsight for Exchange Error Code: 1219
That sounds like we are on the right track. I am definitely using a different service account for my generic SAM management. I can close that session, but won't that cause the regular SAM monitoring...
View ArticleRe: Using Solarwinds IPAM to monitor Bluecat Adonis appliances?
Not pools specifically, as I was trying to get into that.... but I was able to get a good setup and was able to not only poll for DHCP daemon, but also use the Application Monitor to monitor the...
View Article