Submit a ticketCall us

Looking to compare latest NPM features with previous versions of NPM?
The NPM new feature summary offers a comparison of new features and improvements offered with this release.

 

Home > Success Center > Log & Event Manager (LEM) > Integrate Websense with SolarWinds LEM

Integrate Websense with SolarWinds LEM

Created by Karen Valdellon, last modified by MindTouch on Jun 23, 2016

Views: 14 Votes: 0 Revisions: 9

Overview

This article outlines the procedures for configuring Websense Enterprise to send logs to your LEM appliance using SNMP, and configuring your LEM appliance to accept the logs and process them for storage and monitoring.

Note: Starting with Websense v6.1, Websense sends system events to an SNMP server, but it continues to log activity events to a local database.

Requirements

  • Websense Enterprise - Corporate Edition v6.1 or later
  • Websense Client Policy Manager (CPM)
  • Websense Usage Monitor
  • Websense Master Database

Environment

  • All LEM versions

Steps

Configuring Websense to Send Log Messages to the LEM Appliance

 

To configure Websense Enterprise for use with the LEM appliance:

  1. Open Websense Manager.
  2. On the Network tab, go to Server > Settings.
  3. In the Settings form, click Alerts and Notifications in the left pane.
  4. In the Maximum usage alerts per event field on the Configuration tab, enter 9999.
  5. Under SNMP Alert Settings, select SNMP Alerts.
  6. Enter the IP address of your LEM appliance in the IP Address field.
  7. Click the System Alerts tab and select SNMP for every row.
  8. Click the Category Usage Alerts tab.
  9. Set the Occurrence to 1 Time for each row except the Miscellaneous Uncategorized row.
  10. Set the Occurrence to 100 Times or greater for the Miscellaneous Uncategorized row.
  11. Select SNMP for each category for which you want to receive an alert.
  12. Click the Protocol Usage Alerts tab and set the Occurrence to 1 Time for each row.
  13. Select SNMP for each protocol for which you want to receive an alert.
  14. Click OK, and then Done.

 

To configure Client Policy Manager for use with the LEM appliance:

  1. Open Websense Manager.
  2. On the Desktop tab, go to Server > Settings.
  3. In the Settings form, click Alerts and Notifications in the left pane.
  4. Under Configure alerting modes on the Configuration tab, select SNMP.
  5. Enter the IP address of your LEM appliance in the IP Address field.
  6. Click the System Alerts tab and select SNMP for every row.
  7. Click the Usage Alerts tab.
  8. Set the Occurrence to 1 Time for each row.
  9. Select SNMP for each row.
  10. Click OK.

Configuring Your LEM Appliance to Accept Logs From Websense

 

To configure your LEM Manager to accept SNMP traps:

  1. Connect to your LEM virtual appliance using either the vSphere console view, or an SSH client like PuTTY.
  2. If you are using an SSH client, log in to your LEM virtual appliance using your CMC credentials.
  3. At the cmc> prompt, enter service.
  4. At the cmc::scm# prompt, enter enablesnmp.
  5. Press Enter to confirm your entry.
  6. After you see the following message, enter exit to return to the cmc> prompt:
    Done starting the SNMP service
  7. Enter exit to log out of your LEM virtual appliance.

 

To configure the Websense Web Filter and Websense Web Security connector on the LEM Manager:

  1. Open the LEM Console and log in to your LEM Manager as an administrator.
  2. Click the gear icon next to the LEM Manager, and then select Connectors.
  3. In the Connector Configuration window, enter Websense Web Filter in the search box at the top of the Refine Results pane.
  4. Click the gear icon next to the Websense Web Filter and Websense Web Security connector, and then select New.
  5. Enter a custom Alias or accept the default.
  6. If you are finished configuring the connector, click Save.
  7. Click the gear icon next to the new connector, denoted by an icon in the Status column, and then click Start.
  8. Click Close to close the Connector Configuration window.
Last modified
20:02, 22 Jun 2016

Tags

Classifications

Public