Challenges
- Purchased SolarWinds LEM to address the following challenges:
- Meet compliance requirement, for example, by storing log data for a required retention period
- Determine whether a security incident has occurred and what happened
- Protect endpoints by monitoring events, and file and registry changes
- Correlate logs and events from network devices, servers, and applications
Use Case
- Collects log and event data from between 0 and 100 nodes.
- Collect logs and events from the following devices:
- Servers
- End user workstations
- Collect log and events from the following applications:
- Operating System Events
- Infrastructure applications; e.g., DHCP, DNS, Active Directory, etc.
- E-mail servers
- Web servers and applications
- Antivirus software
- Evaluated the following vendors before purchasing SolarWinds LEM:
- ManageEngine
Results
- Realized the following benefits with SolarWinds LEM:
- Find if a security incident had occurred and what happened
- Troubleshoot application and network problems
- Aggregate their log data in a single place
- Enable endpoint protection for file and registry changes
- Purchased SolarWinds over competitive vendors for the following reasons:
- Ease of use
- SolarWinds’ features
- Being an existing SolarWinds customer or purchasing with other SolarWinds’ products
- SolarWinds’ reputation