Submit a ticketCall us

Get a crash course on Network Monitoring delivered right to your inbox
This free 7-day email course provides a primer to the philosophy, theory, and fundamental concepts involved in IT monitoring. Lessons will explain not only how to perform various monitoring tasks, but why and when you should use them. Sign up now.

Home > Success Center > Log & Event Manager (LEM) > Which user to log in for LEM console

Which user to log in for LEM console

Table of contents
Created by Tim Rush, last modified by Aileen de Lara_ret on Aug 30, 2016

Views: 64 Votes: 0 Revisions: 4

Updated August 30, 2016


This article provides additional assistance for log in. 


All LEM versions 


Before choosing a user to log in, there are several things to take note of:


  • When the LEM is first deployed, the first (and only) user to log into the LEM is "admin", and during that first log in, you will be forced to change the password to a secure password of your choice. 
  • The "admin" user is the default user for the 'web-based' GUI-console login to LEM.
  • Like Windows you cannot delete this user, but unlike Windows you cannot rename this user.
  • Also like Windows, you can login using admin whenever you want. We advise logging in with a specific user (local user or AD user) so that activity is tracked to the user.  And if a mistake was made in Monitor (filters) to make your user login unusable, you can always login with "admin" to verify access.
  • Never allow two users to login with the same user at the same time, especially the "admin" account. When using the web-based access to the LEM console, the user profile is kept on the LEM itself. Either user can corrupt the filters, and the nDepth searches created by this user. It may be possible to cause other problems as well.


Refer to the following document for creating new users in the LEM console:


  • Always log into the LEM with either your created local user account, or the Active Directory (AD) account.
  • The AD account will need to be all lower case characters for the fully-qualified domain and include the user (for example,\bill.gates). The domain name must be lower-case.


Always create users with the lowest permissions possible:

  • If the user only needs to receive email notifications, set the user role to 'contact'.
  • If the user only needs to view filters and rules, set the user role to 'monitor'.
  • If the user only needs to create/change filters, and only view rules, set the user role to 'auditor'.
  • If the user only needs to run reports, set the user role to 'reports'.





Last modified
19:04, 29 Aug 2016