We use the solution to monitor a large portion of the IT landscape, which includes our Windows servers, SQL database servers, and IBM servers. Some application-related monitoring is also done through SolarWinds Security Event Manager.
I started using it in response to a job requirement, specifically related to my experience with a team product focused on IT projects and data loss prevention software.
The tool would see all the events and be able to judge on its own which event was not a big deal. It also gives you insights, email alerts and app directory changes.
We use SolarWinds to comply with audit requirements because we must centralize all log collection. We don't use it on a day-to-day basis, but we employ it when we need to investigate, troubleshoot, monitor, or do anything else requiring a fixed-log or event management solution. Initially, we had a five-person team, but we're still deploying it to other locations. The rest of the technical team will be using it, so ultimately, we will have around 50 users. I don't think there's a licensing limitation on the number of users who can access the system.
Learn what your peers think about SolarWinds Security Event Manager. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
Technical Operations & Management Professional at RMC Enterprises
Real User
2021-12-01T20:47:19Z
Dec 1, 2021
Its use case is to identify and help prevent and block known spyware or ransomware sites. Ransomware sites typically have bad IPs or domain names. In terms of the version, I have had our clients log in and update the version a few times.
Program Manager at a computer software company with 5,001-10,000 employees
Real User
2021-10-06T16:34:00Z
Oct 6, 2021
We use SolarWinds as a kind of SIEM solution, so I don't have other additional security needs. Lately, we've been exploring other solutions. We are a Managed Security Services Provider, and we have nine people predominantly working on that solution. We also have team members who work on multiple solutions.
The primary use case is for privilege account monitoring. It's monitoring admin accounts for things such as who logged in, where they logged in from, what time they logged in, and from what devices they used Remote desktop, with the privileged accounts. It's a good tool to do troubleshooting, you can see extensive Info about Kerberos User Auth tickets or Windows Kerberos Machine Auth tickets, which can alert you to say , failing Kerberos Authentications due to incorrect NTP (Network time).
Consultant at a computer software company with 11-50 employees
Real User
2020-02-24T06:02:00Z
Feb 24, 2020
Our primary use case is analyzing log files from any kind of source which is IT related. We use the product in our company on a daily basis and also integrate it for others. There are four people in our company using this software, and it's part of their daily routine to check everything. We are consultans and a reseller of the solution.
Senior Technical Engineer at a tech vendor with 51-200 employees
Real User
2020-01-30T07:55:37Z
Jan 30, 2020
We work with and resell all of the SolarWinds products, and SolarWinds LEM is one of the solutions that I have experience with. This solution is used in conjunction with others to find the root cause of problems when a user is not able to access an application.
Director, Technical Architect at Archer Information Technology
Real User
2019-12-23T07:05:00Z
Dec 23, 2019
Our installation is on-premises at the moment. We are a consultant group so we implement multiple solutions for different customers using a variety of different products. Some clients are in the Cloud, some on a WAN network and some are on-premises. SolarWinds LEM is one of the products we use for certain purposes and often recommend. I'm very technical. I work as a network and security technical architect. At the same time, I also own the company, so I'm the director. I still remain very technically involved with the solutions and the architecture for solutions, based on networks and security. SolarWinds is one of the products that I use, amongst many others to fit the needs of our customers which includes their budget, size, and industry.
IT Consultant at a consultancy with 5,001-10,000 employees
Real User
2019-08-12T05:55:00Z
Aug 12, 2019
We are using this solution for the purpose of security monitoring. It performs network behavior monitoring, log monitoring, and disaster recovery monitoring.
When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.
I use the solution in my company as it is where we can see what is happening in the network and correlate the information received.
We use the solution to monitor a large portion of the IT landscape, which includes our Windows servers, SQL database servers, and IBM servers. Some application-related monitoring is also done through SolarWinds Security Event Manager.
I started using it in response to a job requirement, specifically related to my experience with a team product focused on IT projects and data loss prevention software.
The tool would see all the events and be able to judge on its own which event was not a big deal. It also gives you insights, email alerts and app directory changes.
We use SolarWinds to comply with audit requirements because we must centralize all log collection. We don't use it on a day-to-day basis, but we employ it when we need to investigate, troubleshoot, monitor, or do anything else requiring a fixed-log or event management solution. Initially, we had a five-person team, but we're still deploying it to other locations. The rest of the technical team will be using it, so ultimately, we will have around 50 users. I don't think there's a licensing limitation on the number of users who can access the system.
SolarWinds Security Event Manager is used for retrieving events and suspicious activities. We are only studying the solution.
I use SolarWinds for log and incident monitoring. More than 100 engineers at my company are currently using it.
We are using SolarWinds Security Event Manager for event analysis.
Its use case is to identify and help prevent and block known spyware or ransomware sites. Ransomware sites typically have bad IPs or domain names. In terms of the version, I have had our clients log in and update the version a few times.
We use SolarWinds as a kind of SIEM solution, so I don't have other additional security needs. Lately, we've been exploring other solutions. We are a Managed Security Services Provider, and we have nine people predominantly working on that solution. We also have team members who work on multiple solutions.
I basically use it to look at the logs that are coming in, analyze those logs, and get recommendations of where we have problems.
The primary use case is for privilege account monitoring. It's monitoring admin accounts for things such as who logged in, where they logged in from, what time they logged in, and from what devices they used Remote desktop, with the privileged accounts. It's a good tool to do troubleshooting, you can see extensive Info about Kerberos User Auth tickets or Windows Kerberos Machine Auth tickets, which can alert you to say , failing Kerberos Authentications due to incorrect NTP (Network time).
Our primary use case is analyzing log files from any kind of source which is IT related. We use the product in our company on a daily basis and also integrate it for others. There are four people in our company using this software, and it's part of their daily routine to check everything. We are consultans and a reseller of the solution.
We work with and resell all of the SolarWinds products, and SolarWinds LEM is one of the solutions that I have experience with. This solution is used in conjunction with others to find the root cause of problems when a user is not able to access an application.
We are using this solution for our internal log event monitoring, as well as for file integrity monitoring.
Our installation is on-premises at the moment. We are a consultant group so we implement multiple solutions for different customers using a variety of different products. Some clients are in the Cloud, some on a WAN network and some are on-premises. SolarWinds LEM is one of the products we use for certain purposes and often recommend. I'm very technical. I work as a network and security technical architect. At the same time, I also own the company, so I'm the director. I still remain very technically involved with the solutions and the architecture for solutions, based on networks and security. SolarWinds is one of the products that I use, amongst many others to fit the needs of our customers which includes their budget, size, and industry.
I use this solution to examine our logs and the logs of our customers We have experience with on-premises deployments.
We primarily use the solution for monitoring the network.
We are using this solution for the purpose of security monitoring. It performs network behavior monitoring, log monitoring, and disaster recovery monitoring.