SolarWinds Log & Event Manager (LEM) delivers comprehensive Security Information and Event Management (SIEM) capabilities in a highly affordable, easy-to-deploy virtual appliance. Log & Event Manager automates and simplifies the complex task of security management, operational troubleshooting, and continuous compliance, enabling IT pros to.
- Solarwinds Log & Event Manager Lem30
- Solarwinds Log And Event Manager
- Solarwinds Security Event Manager
- Solarwinds Log Event Manager
SolarWinds Log & Event Manager was built to support the diversity that is the rule (and not the exception) in today’s IT environments. It supports dozens of manufacturers, hundreds of products, and thousands of models. SolarWinds Log & Event Manager integrates with best-of-breed products in every major category, with more being added each week. Welcome to the SolarWinds Customer Portal login page. Within the Customer Portal you can download products, receive support, renew maintenance, and much more! Security Event Manager includes features to quickly and easily narrow in on the logs you need, such as visualizations, out-of-the-box filters, and simple, responsive text-based searching for both live and historical events. With scheduled search, you can save, load, and schedule your most commonly used searches.
Name: SolarWinds Log & Event Manager
Description: The SolarWinds Log & Event Manager, also known as the LEM, is a virtual appliance capable of collecting logs and events from almost any network-connected device and then correlating that data for further analysis.
Price: $4,495, including license and one-year of maintenance.
Quick Read
Rating Breakdown
SC Labs Reviews
Reviews from our expert team
Features:
Documentation:
Value for Money:
Performance:
Support:
Ease of Use:
Summary
The SolarWinds Log & Event Manager, also known as the LEM, is a virtual appliance capable of collecting logs and events from almost any network-connected device and then correlating that data for further analysis. The LEM virtual appliance can be deployed in either a VMware ESX or Microsoft Hyper-V virtual environment and can provide insight into security events, as well as help with performance monitoring and compliance management.
For our evaluation we chose to install the VMware virtual appliance. We found the installation process to be quite easy and straightforward. To get started, we simply had to download the executable from the SolarWinds support site. After the executable was downloaded, we ran it and it expanded into a folder containing the open virtual appliance (OVA) file along with installation instructions and the desktop software for additional management capabilities. To get the appliance up and running, we simply had to import it into our ESX installation and turn it on. The appliance was able to acquire a Dynamic Host Configuration Protocol (DHCP) address and we were able to log into the web-based management console within minutes of turning the appliance on.
From a management perspective, this appliance has a lot to offer. The first thing we saw when logging into the interface was a full dashboard with many helpful charts, graphs and lists, along with access to help and support. The dashboard can be customized to fit the needs of a specific user type or group, but the default setup is a good place to start. As for reporting, this appliance features a plethora of compliance-based report templates already built in and ready to go. Furthermore, this tool can take data from other SolarWinds products and provide an extra level of analysis to ensure better security.
Documentation included a quick-start guide, along with a full user guide. The quick-start guide detailed the steps necessary to download and install the virtual appliance, as well as some other basic information. The user guide takes over where the quick-start leaves off and details configuration and management of the appliance, as well as use of product features. We found both of these to be clear and easy to follow. They each also included full step-by-step instructions and screen shots.
SolarWinds includes the first year of technical support as part of the purchase price. Customers have access to 24/7 unlimited phone- and email-based technical support, as well as a large aid area on the website. The customer support area includes documentation, product downloads, video tutorials and training materials, and access to a full knowledge base and user forum.
At a price just shy of $4,500 for the virtual appliance and one year of support, we find this offering to be an excellent value for the money. The SolarWinds LEM offers a solid feature set with an easy to navigate interface in a virtual appliance that is simple to deploy and manage at a reasonable price. This solution can be used in almost any environment and is good starting point for SIEM deployment.
Over 3500 resource-constrained security professionals rely on SolarWinds Log & Event Manager (SIEM) for powerful, affordable, and efficient security information and event management. The all-in-one SolarWinds Log & Event Manager combines business tools such as log management, correlation, reporting, file integrity monitoring, user activity monitoring, USB detection and prevention, threat intelligence and active response in a virtual appliance – that’s easy to deploy, manage, and use.
Solarwinds Log & Event Manager Lem30
Key features of SolarWinds Log & Event Manager
Proactive Log Analysis
The multitude of distributed systems, applications, and networks in the organisation’s infrastructure – they all have associated log files. However, this information is useless if the organisation can’t effectively collect and analyse it. SolarWinds Log & Event Manager not only provides real-time log analysis, but also delivers interactive data visualisation and built-in knowledge that automates collecting, normalising, and interpreting logs from a variety of devices and applications. This means users can immediately spot events that are of interest and take action.
Real-time Event Correlation
Correlating millions of events from organisation’s network, systems, applications, virtual machines, and storage infrastructure can be daunting… unless organisations have SolarWinds Log & Event Manager at their fingertips. With nearly 700 built-in correlation rules, SolarWinds LEM starts delivering visibility right out of the box, eliminating hours of work. Moreover, it creates a very simple correlation rule builder that employs a graphical interface to quickly build custom rules.
Ad Hoc IT Search
Solarwinds Log And Event Manager
Log & Event Manager’s advanced ad-hoc IT search capability makes it easy to discover issues using a drag-and-drop interface that tracks events instantly. With an intuitive search interface, customers can get immediate insight into activities that would normally go unnoticed. Using a unique Word Cloud, along with treemaps, bubble charts, and histograms, SolarWinds Log & Event Manager offers a fully interactive search environment that enables users to visualise search data and understand how to take action on it. Finally, innovative approach to data aggregation, archiving, and encryption enables users to quickly and securely search terabytes of data.
Compliance Reporting
Log & Event Manager makes it easy to generate and schedule compliance reports quickly using over 300 audit-proven templates and a console that enables to customise reports for organisation’s specific compliance needs. Users can even schedule the reports to run on a regular basis. Moreover, reports can be exported in a wide variety of formats. Finally, users can be assured that SolarWinds Log & Event Manager also meets the security monitoring and log management requirements imposed by every major auditing authority.
Active Response & Threat Mitigation
Log & Event Manager enables organisations to immediately respond to security, operational, and policy driven events. With built-in active responses users can quarantine infected machines, block IP addresses, kill processes, and adjust Active Directory® settings.
USB Detection & Prevention
USB devices are a nightmare for IT administrators because gigabytes of sensitive data can just walk out through the door. In order to prevent business from data loss, Log & Event Manager includes unique technology that tracks USB activity identifies unauthorised use or copying of sensitive files. In fact, this product can notify network admins in real time, disable user account or automatically eject the USB drive.
WHO SHOULD USE LOG & EVENT MANAGER?
Resource-constrained security pros challenged with:
- Lack of visibility into attacks as well as limited time for staffed monitoring
- Compliance demands requiring automation or file integrity monitoring
- Inability to prioritise, manage, and respond to security incidents
- Slow incident response time
- Inability to determine the root cause of suspicious activity
- The need to monitor internal users for acceptable use and insider threats
- The need to share log and activity data across security, network, applications, and systems
- Inefficient, inoperable, or costly existing SIEM implementations
CMS DISTRIBUTION – AUTHORISED SOLARWINDS DISTRIBUTOR
Solarwinds Security Event Manager
CMS Distribution has been the authorised SolarWinds distributor in the United Kingdom and Ireland since 2007. The value-added software distributor have a dedicated team in place to support resellers with developing new business opportunities. Adobe lightroom cc 6.14. Contact us to discuss how we can help you grow your SolarWinds business.
Solarwinds Log Event Manager
Download Free SolarWinds Trials |