SolarWinds Security Event Manager (SEM) Reviews

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener'>Customer Verified: Read more.</a>
95 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 5.7 out of 100

Do you work for this company? Learn how we help vendors

TrustRadius TRUE Badge

Overall Rating

Reviewer's Company Size

Last Updated

By Topic

Industry

Department

Experience

Job Type

Role

Filtered By:

Reviews (1-25 of 32)

Companies can't remove reviews or game the system. Here's why.
July 26, 2021
Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SolarWinds SEM is well suited for a medium to large enterprise with continental datacenters or a few datacenters peppered around the globe. SolarWinds is a thorough and complete IT Operations Monitoring, Alerting, and Capacity planning solution with excellent ROI and arguably the fastest tool to get up and running with a great ROI usually within the first year. SolarWinds modules allow for the deployment of a specific IT Domain solution or a complete end-to-end IT Operations center tool for Application, Server, Network, Security, etc.
Read this authenticated review
April 01, 2021
Anonymous | TrustRadius Reviewer
Score 1 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

The SEM tool [seems] very difficult to use due to lack of support from SolarWinds customer support. No up-to-date documentation on how to onboard, no videos on best practices, no use case videos[, and] bad customer service.
Read this authenticated review
December 08, 2020
Joseph Crook | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

For medium to large scale business that incorporate high-value resources and need a central log repository I think SolarWinds is fantastic. It may be overkill for smaller businesses however.
Read Joseph Crook's full review
October 23, 2020
Tim Short | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

It is great for using the automated response to log off users or detaching a USB device to assist with keeping your end-user devices safe in the workplace and from home now that people are doing more of a home office has a tool that can monitor what is going on on the desktops is a big plus and giving our OPS team the ability to kill a malicious process without giving them more training or privileged account to assist with stopping malicious users. There is not as much of a learning curve due to the fact that we already use the Orion products by SolarWinds making this product easier to learn.
Read Tim Short's full review
October 13, 2020
Adam Radics | TrustRadius Reviewer
Score 6 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SolarWinds Security Event Manager is good for detecting events out of the ordinary, however, getting it to the point where 'normal' or 'ok' activity is hidden is time-consuming and can be difficult. It is good as a general dashboard to identify security events or where changes have had unexpected impacts, not as good as a general log server for analysis.
Read Adam Radics's full review
November 04, 2020
Kim Schroeder | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SolarWinds Security Event Manager (SEM) works well for a company our size, and we think it will enable us to grow without having to change out the system. We've also implemented Solar Winds Service Desk.
Read Kim Schroeder's full review
November 12, 2020
Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SEM is appropriate for all but the absolute largest networks. It works great for smaller, medium, and even some decent sized networks. Having options for all kinds of data to easily be ingested and have the events normalized out of the box is great. The price is really right when compared to other products. Some competitors are priced by number of events and in a locked down environment; this means millions of events so price climbs fast on these other products. Agents are easily deployed and can be used in images. The number of event connectors for ingesting data is large and built into the product and constantly updated. Updates are easy.
Read this authenticated review
December 09, 2020
Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

The SolarWinds Security Event Manager is great for people who want to be able to either view logs or set up emails for certain actionable events. However, it would be less helpful in a situation where you want your SEM to be taking action on specific items. There are some actions that can be taken by the SEM, but they constitute a rather short list in comparison to other SEM tools.
Read this authenticated review
December 09, 2020
Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

The tool provides a single pane of glass to all of our products. It is nice to have the logs parse together in a single place. The interface itself has a lot to be desired. The product has been built over the top of other products and you can tell.
Read this authenticated review
December 08, 2020
Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

The Solarwinds SEM will get your logs collected and analyzable, especially for Windows servers or workstations, it can be a good solution. Alerting and reporting need to be done manually, but once you have it set up the way you want, it will work solidly. If you are looking at a log collection solution that has any of its own smarts and analytics, Solarwind doesn't have such machine learning features, maybe in the future. If you want out of the box reporting and alerting, that won't happen. They need to create and fine-tune the rules more.
Read this authenticated review
November 11, 2020
Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SolarWinds Security Event Manager is best suited for environments with many devices that need to be secured and are high availability, where any down time needs to be resolved quickly and the cause of a failure needs to be investigated and determined with good degree of precision. It's also suited for environments that need to be kept in compliance according to several standards. Many standards and policies require the keeping and review of logs for several years back.
Read this authenticated review
October 25, 2020
Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Review Source

Likelihood to Recommend

A good product for a single pane of glass auditing various products.
Not a product you can set up properly in 1 hour and needs long hours of reading to get used to.
Read this authenticated review
October 02, 2020
Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

It is well suited for a small/medium business that needs a SIEM, and doesn't want to spend weeks/months adjusting it to make it work. It's easy to put in place, so a low IT staff company can use SEM as SEIM without struggling weeks with expensive consultants. Also, on a budget side, is more affordable than competitors like Splunk or LogRhythm.
Read this authenticated review
September 11, 2020
Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Review Source

Likelihood to Recommend

Well suited for triggering on well-defined events, such as logon failure. The correlation engine is especially useful in triggering on dissimilar events. Overall, it captures all of the events, and using the filters to locate the events is the best application.

It is not well suited for reporting, as it is very slow, making it almost unusable. The File Integrity Monitor is a good concept but does not work well in the real world. As it generates multiple events for file delete, create, etc.
Read this authenticated review
August 17, 2020
Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

The initial install is the first step and shows you some compliance issues that you may not even be aware of.
Read this authenticated review
July 21, 2020
Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SEM is well suited for all size networks, from small to large. It can be used by network engineers or by security engineers as the tool can address multiple issues.
Read this authenticated review
April 03, 2020
Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SolarWinds SEM is great for alerting when applications are misbehaving, sometimes if an application gets stuck in a logic loop you will immediately know with SolarWinds SEM because you can see the logs generated on that application would have skyrocketed. It also provides useful information to really track down what computers are locking your account out (we all deal with this). SolarWinds SEM will only benefit you if it can see the logs on the device or forward them to SolarWinds SEM.
Read this authenticated review
January 31, 2020
Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SolarWinds Security Event Manager is well-suited for small- to mid-sized organizations that cannot afford a large Information Technology team or department. SolarWinds Security Event Manager has robust reporting and logging capabilities, but significant time must be spent up front to ensure proper configuration. Once configured, however, the power of SolarWinds Security Event Manager stands above Cisco from an alerting perspective and can assist with investigating any security issue in your environment.
Read this authenticated review
November 17, 2019
Adam Morrison | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

When an account is created in active directory your teams can be notified. You can also be notified when computer objects are created in your enviroment. This can be helpful to spot unknown devices that may try to bind to your AD for authentication. Or if accounts are deleted in mass you can react quickly.
Read Adam Morrison's full review
January 15, 2020
Swetal Jariwala | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

SEM is great in my environment for monitoring Windows Event Logs to view any changes in Active Directory such as adding users to administrators and domain admins groups. Also for auditing configuration changes on Cisco devices, it is very useful. I find it not so useful for logs from the VMware NSX platform. For these logs, I use VMware's own vRealize Log Insight. It would be great if I could consolidate everything onto SEM and have a single place to collect and analyze all logs.
Read Swetal Jariwala's full review
December 28, 2019
Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

It is well suited to monitor your Windows AD. You can get detailed login information and notifications like failures and lockouts. It also shows the IP address where it occurs so it makes locating the culprit a lot easier.

It does well with monitoring for suspicious activity. It can alert you if It sees a client is trying to circumvent DNS so they can go through proxy avoidance tactics.
Read this authenticated review
October 09, 2019
Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

Smaller companies just getting started with looking at security products would like the product. Also, maybe smaller companies without dedicated security staff that just need something for some bare minimum requirements. It does some of the easy stuff pretty well, and there's no massive learning curve.

Bigger companies or companies with dedicated security staff will likely look at other options. This seems like an entirely mid-market only purchase. If you want to be able to correlate events from multiple sources, not just agent-based windows logs, you'll likely need to look elsewhere. While you can also forward syslog to the appliance, you can't enrich any data or use sources like NIDS/HIDS logs. This product will not give you a true single pane of glass like some offerings.
Read this authenticated review
November 16, 2019
Anonymous | TrustRadius Reviewer
Score 1 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

I'd give it a 0 if that was an option. Sometimes, on the rare occasion that the SSO isn't broken, we can actually log in to this and click around for 30 minutes and finally find some logs that point us in the right direction for tracking down what's locking out an AD account. Other than that, it's useless.
Read this authenticated review

Feature Scorecard Summary

Centralized event and log data collection (18)
8.6
Correlation (15)
7.7
Event and log normalization/management (18)
7.3
Deployment flexibility (18)
8.0
Integration with Identity and Access Management Tools (13)
8.0
Custom dashboards and workspaces (17)
4.9
Host and network-based intrusion detection (4)
9.0

What is SolarWinds Security Event Manager (SEM)?

SolarWinds Security Event Manager (previously know as Log & Event Manager) is presented by the vendor as a powerful and award-winning SIEM. It is an on-prem deployed tool that collects, consolidates, and analyzes logs and events from firewalls, IDS/IPS devices and applications, switches, routers, servers, operating system logs, and other applications.

The main applications are threat detection, automated incident analysis and response, and compliance reporting for IT infrastructure.

SolarWinds Security Event Manager (SEM) Features

Security Information and Event Management (SIEM) Features

Has featureCentralized event and log data collection
Has featureCorrelation
Has featureEvent and log normalization/management
Has featureDeployment flexibility
Has featureIntegration with Identity and Access Management Tools
Has featureCustom dashboards and workspaces

SolarWinds Security Event Manager (SEM) Screenshots

SolarWinds Security Event Manager (SEM) Video

Security Event Manager - Overview

SolarWinds Security Event Manager (SEM) Downloadables

SolarWinds Security Event Manager (SEM) Competitors

SolarWinds Security Event Manager (SEM) Pricing

  • Has featureFree Trial Available?Yes
  • Does not have featureFree or Freemium Version Available?No
  • Does not have featurePremium Consulting/Integration Services Available?No
  • Entry-level set up fee?No

SolarWinds Security Event Manager (SEM) Support Options

 Free VersionPaid Version
Phone
Email
Forum/Community
FAQ/Knowledgebase
Video Tutorials / Webinar

SolarWinds Security Event Manager (SEM) Technical Details

Deployment Types:On-premise
Operating Systems: Windows
Mobile Application:No

Frequently Asked Questions

What is SolarWinds Security Event Manager (SEM)?

SolarWinds LEM is security information and event management (SIEM) software.

What is SolarWinds Security Event Manager (SEM)'s best feature?

Reviewers rate Host and network-based intrusion detection highest, with a score of 9.

Who uses SolarWinds Security Event Manager (SEM)?

The most common users of SolarWinds Security Event Manager (SEM) are from Mid-size Companies and the Information Technology & Services industry.