Documentation forSecurity Event Manager

SEM Events Viewer

The SEM Console provides instant access to live event monitoring and filtering as well as historical record archives for in-depth analysis and troubleshooting. Within the console view, you can quickly switch between real-time event streaming and historical log views based on user-defined date and time parameters.

Number Item Description
1 Events The Events table displays the events that exist for your selected filter, live and historical. The title bar displays the filter name you select in the Filters pane. In Live Mode, events stream into the viewer as they occur in your network. Enter live filter keywords in tandem with the Filters pane to monitor specific activity as it occurs. Click Historical Events to apply filters and view your aggregated event logs.
2 Filters

The Filters pane displays all filters you can apply to the console event messages. All filters are stored in groups. To add a filter to the events table, click to expand a filter group, and then select a filter. The events table title changes to the name of the event and the grid refreshes and displays the incoming events allowed by the filter conditions. To create or edit filters, return to the Events view. You can also create a rule from a filter with a single click.

3 Toolbar Switch between Live and Historical Events as required on the Toolbar. You can also access the dashboard and work with nodes and rule, and configure users, directory service groups, user-defined groups and e-mail templates. The icon on the far right opens the Settings page. The icon gives you access to documentation, and enables you to log out, export event logs, and download the reports application and SQL Auditor.
4 Detail The Detail pane displays specific information about the last event you selected in the Events table. When you click an event, the event is highlighted in the Detail pane along with supporting information. To view the event details for a specific event, select the event in the event stream and review the results in the Detail pane. Click the Hide Pane icon to collapse the pane, or the Show Pane icon to expand it. Click the icon to copy CSV-formatted event details to your system clipboard. You can also enter specific keywords in the pane to filter and view specific event data.