Integrate SolarWinds Observability Self-Hosted with SEM and ARM
SolarWinds Observability Self-Hosted Advanced customers can integrate SolarWinds Observability Self-Hosted with our security products, SolarWinds Security Event Manager (SEM) and SolarWinds Access Rights Manager (ARM).
When you integrate your SEM or ARM deployment, you can view security data in the SolarWinds Platform Web Console. This gives IT administrators a single-pane-of-glass view of the top security events and issues. They can launch in-context into SEM or ARM, reducing their mean time to identify issues.
Integrate with ARM
If HTTPS is used, valid certificates are required. If self-signed certificates are used, you must install the necessary ARM certificates on the server running SolarWinds Observability Self-Hosted before you establish the connection.
-
Click Settings > All Settings in the menu bar.
-
Under Product Specific Settings, click Security Settings.
-
Under Getting Started with Security, click Access Rights Manager Settings. The settings dialog opens.
-
Enter the Base URL of your ARM server.
-
Enter your ARM credentials.
-
Click Submit.
View ARM data in the SolarWinds Platform Web Console
After ARM has been integrated, Click My Dashboards > Security > Security Summary to see ARM data on the Security Summary page.
When you add the ARM server as a monitored node, you can add the following widgets to the Node Details page:
- Active Directory Overview
- Oldest Logons
- Risk Assessment
Integrate with SEM
If HTTPS is used, valid certificates are required. If self-signed certificates are used, you must install the necessary SEM certificates on the server running SolarWinds Observability Self-Hosted before you establish the connection.
-
Click Settings > All Settings in the menu bar.
-
Under Product Specific Settings, click Security Settings.
-
Under Getting Started with Security, click Security Event Manager Settings. The settings dialog opens.
-
Enter the Base URL of your SEM server.
-
Specify whether you want to accept self-signed certificates. By default, SEM is shipped with a self-signed certificate. If you deselect this option, the connection fails if an incoming certificate is self-signed.
-
Enter the credentials of a SEM admin user.
-
Click Test to test the connection.
-
Click Submit.
View SEM data in the SolarWinds Platform Web Console
After SEM has been integrated:
-
Click My Dashboards > Security > Security Summary to see SEM data on the Security Summary page.
-
Click My Dashboards > Security > SEM Dashboard, or click
from a SEM widget on the Security Summary page, to open the Security Event Manager dashboard.
The Security Event Manager dashboard displays only data from SEM. Click
on any widget on this board to access the associated data in SEM.
SEM dashboard widgets in SolarWinds Observability Self-Hosted display events from SEM Scheduled Queries with the appropriate tags added to the queries. SEM dashboard widgets do not load events from Live Events.
When you add the SEM server as a monitored node, you can add the following widgets to the Node Details page:
-
Last events based on custom SEM filter
After you add this widget, click Edit and specify what the widget displays, including:
- The maximum number of events to display
- The maximum number of events per page
- The time period
- The type of event
Users can click Open in SEM from this widget to open the SEM Live Events page.
-
Top events based on custom SEM filter widget
After you add this widget, click Edit and specify what the widget displays, including:
- The maximum number of events to display
- The time period
- How items are grouped
- The type of event
Users can click Open in SEM from this widget to open the SEM Live Events page.