SolarWinds Security Event Manager Reviews

We had to integrate with other teams, and the infrastructure deployment didn't take long. The integration involves learning with different teams, networking, and configuring various network devices and servers. Infrastructure deployment only took one or two days. The deployment involves servers, such as the SolarWinds server. However, regarding networking and mapping, integrating all seven service centers took two to three weeks.

We have automated threat detection in the Alliance Security, Antoinette. However, if these features could be further enhanced, it would simplify my work, potentially allowing me to allocate more time to address complex issues. While we possess a robust automated web detection system, I have encountered some use cases where it does not perform as expected.

The only issue is the licensing cost, which is a bit higher. Scaling is very easy as long as we have additional resources and the infrastructure can accommodate the resources we commit to scaling. We may need to purchase additional licenses for configurations.

I use the solution in my company as it is where we can see what is happening in the network and correlate the information received.

I think the customization area in the tool can be considered as an area of concern where improvements are required

In the future, I want to see the tool have better customization abilities with some third-party vendors. For the on-premise version of the tool, the UI should be improved.

We use the solution to monitor a large portion of the IT landscape, which includes our Windows servers, SQL database servers, and IBM servers. Some application-related monitoring is also done through SolarWinds Security Event Manager.

The most valuable feature of the solution is its flexibility because it is a very versatile product. You can use it to monitor Microsoft or Windows-related things. The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers.

I started using it in response to a job requirement, specifically related to my experience with a team product focused on IT projects and data loss prevention software.

It is an effective tool, serving as a vital component of my Unified Threat Management strategy. It plays a crucial role in applying multiple layers of security to my network and responding effectively to security threats. The security features are robust and responsive, particularly in dealing with various attacks on my network. The management control is commendable, providing a centralized view of all aspects. The user interface is user-friendly, making it easy to navigate and operate.

The primary use case is for privilege account monitoring. It's monitoring admin accounts for things such as who logged in, where they logged in from, what time they logged in, and from what devices they used Remote desktop, with the privileged accounts.

It's a good tool to do troubleshooting, you can see extensive Info about Kerberos User Auth tickets or Windows Kerberos Machine Auth tickets, which can alert you to say , failing Kerberos Authentications due to incorrect NTP (Network time).

We're able to do a bit more in terms of forensic analysis.

I am able to correlate  the S.A.M. Service Applications Monitoring in SolarWinds ORION Platform.

I can trace back several things including the performance at a certain date and time. 

I basically use it to look at the logs that are coming in, analyze those logs, and get recommendations of where we have problems.

It has in-depth monitoring capabilities and an easy way for setting up dashboards. I can expand in various areas, or I can reduce areas. It supports different types of breakdowns, filters, and rules. 

It is very simple for an out-of-the-box type of product. It doesn't take a lot of time to figure it out, which is unlike some of the solutions that I have looked at. It meets all the aspects.

Our installation is on-premises at the moment. We are a consultant group so we implement multiple solutions for different customers using a variety of different products. Some clients are in the Cloud, some on a WAN network and some are on-premises. SolarWinds LEM is one of the products we use for certain purposes and often recommend.  

I'm very technical. I work as a network and security technical architect. At the same time, I also own the company, so I'm the director. I still remain very technically involved with the solutions and the architecture for solutions, based on networks and security. SolarWinds is one of the products that I use, amongst many others to fit the needs of our customers which includes their budget, size, and industry.  

I like the graphical user interface because it is very user-friendly. I like the fact that SolarWinds is a hybrid solution so you can use it across many platforms.  

Our primary use case is analyzing log files from any kind of source which is IT related. We use the product in our company on a daily basis and also integrate it for others. There are four people in our company using this software, and it's part of their daily routine to check everything. We are consultans and a reseller of the solution. 

The most valuable feature of the solution is intuitivity of navigation; it's easy to build rules and actions which are based on the logs and event types we collect with the software.