Log and Event Manager (LEM)
| Tasks | Assumptions & Dependencies |
|---|---|
| Deploy LEM Agents for Event Log collection | Necessary system access for local install or credentials and access for remote install are provided. |
| Provision syslog data to LEM | Configure Sources to forward syslog data to LEM server as desired. |
| Generate Alerts | Email distribution group addresses for personnel receiving alerts and SMTP server settings have been provided. Alert Recipients - know what individuals or Distribution Lists alerts will go to. |
| Build Example Rules | Define rules or actions for detected security events. |
| Assign Connector Profiles | Provide a list of all devices / servers for application of Connector Profiles. |
| Email Alerting | If email based alert actions are wanted, the LEM appliance must be given permissions within the client’s Exchange server or other email relay. |
| vCenter Credentials | Ensure the availability of credentials to allow for deployment of the virtual appliance via VMware vSphere or Microsoft Hyper-V. These credentials should allow for deployment of an OVF Template (VMware) or Importing Virtual Machine (Hyper-V). |
| SolarWinds Application Access | Admin level access to the LEM web console and Admin level access to the LEM CMC console. |
