Submit a ticketCall us

Training ClassThe Orion® Platform Instructor-led Classes

Provided by SolarWinds® Academy, these trainings will introduce users to the Orion Platform and its features, management, and navigation. These courses are suitable for users looking to discover new tips, tricks, and ways to adapt their Orion products to better suit their monitoring needs:
Deploying the Orion Platform
Configuring Orion views, maps, and accounts
Configuring Orion alerts and reports

Reserve your seat.

Home > Success Center > Log & Event Manager (LEM) > LEM - Knowledgebase Articles > Create ndepth FIM File Audit Alert Search

Create ndepth FIM File Audit Alert Search

Table of contents

Updated: November 3, 2016

Overview

This article describes how to create a nDepth search for FIM related data.

 

Environment

  • LEM version 6.x

Detail

1. Log in to LEM console.

2. Click Monitor tab.

3. Click Explore > nDepth.

4. In nDepth panel, click Event Groups > File Audit Alerts.

5. From the Fields: File Audit Alerts drag EventInfo and then DetectionIP, to look something like the one below:

 

6. Click Search button on the top right (blue play button as shown below) after selecting small period example 1 hours or last. Change the sample interval to a custom date range. The longer the date range is, the more time it will take for the data to pull depending on how many files/folders FIM was monitoring.

 

Refer to How to create filter for FIM data if you like to create a filter for FIM.

This article about FIM Related Windos Event ID's might also help with search and reporting.

 
Last modified

Tags

Classifications

Public