SolarWinds Security Event Manager (SEM)

SolarWinds Security Event Manager (SEM)

Customer Verified
Score 8.1 out of 10
SolarWinds Security Event Manager (SEM)


What is SolarWinds Security Event Manager (SEM)?

SolarWinds LEM is security information and event management (SIEM) software.
Read more

Recent Reviews

Read all reviews


Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 7 features
  • Centralized event and log data collection (18)
  • Deployment flexibility (18)
  • Event and log normalization/management (36)
  • Custom dashboards and workspaces (34)

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of SolarWinds Security Event Manager (SEM), and make your voice heard!

Return to navigation


View all pricing

What is SolarWinds Security Event Manager (SEM)?

SolarWinds LEM is security information and event management (SIEM) software.

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visit…


  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

21 people want pricing too

Alternatives Pricing

What is Microsoft Sentinel?

Microsoft Sentinel (formerly Azure Sentinel) is designed as a birds-eye view across the enterprise. Put the cloud and large-scale intelligence from decades of Microsoft security experience to work. Make threat detection and response smarter and faster with artificial intelligence (AI). Eliminate…

What is in Boston offers their enterprise-grade log analytics application, oriented towards providing data security and eliminating the need for capacity management.

Return to navigation

Product Demos

SolarWinds Security Event Manager Overview
Return to navigation


Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

7.6Avg 7.8
Return to navigation

Product Details

What is SolarWinds Security Event Manager (SEM)?

SolarWinds Security Event Manager (previously know as Log & Event Manager) is presented by the vendor as a powerful and award-winning SIEM. It is an on-prem deployed tool that collects, consolidates, and analyzes logs and events from firewalls, IDS/IPS devices and applications, switches, routers, servers, operating system logs, and other applications.

The main applications are threat detection, automated incident analysis and response, and compliance reporting for IT infrastructure.

SolarWinds Security Event Manager (SEM) Features

Security Information and Event Management (SIEM) Features

  • Supported: Centralized event and log data collection
  • Supported: Correlation
  • Supported: Event and log normalization/management
  • Supported: Deployment flexibility
  • Supported: Integration with Identity and Access Management Tools
  • Supported: Custom dashboards and workspaces

SolarWinds Security Event Manager (SEM) Screenshots

Screenshot of Screenshot of Screenshot of Screenshot of

SolarWinds Security Event Manager (SEM) Video

Security Event Manager - Overview

SolarWinds Security Event Manager (SEM) Technical Details

Deployment TypesOn-premise
Operating SystemsWindows
Mobile ApplicationNo

SolarWinds Security Event Manager (SEM) Downloadables

Frequently Asked Questions

SolarWinds LEM is security information and event management (SIEM) software.

Splunk Enterprise Security (ES), LogRhythm NextGen SIEM Platform, and ManageEngine EventLog Analyzer are common alternatives for SolarWinds Security Event Manager (SEM).

Reviewers rate Host and network-based intrusion detection highest, with a score of 9.

The most common users of SolarWinds Security Event Manager (SEM) are from Mid-sized Companies (51-1,000 employees).
Return to navigation


View all alternatives
Return to navigation


(1-25 of 46)
Companies can't remove reviews or game the system. Here's why
Score 8 out of 10
Vetted Review
Verified User
  • quickly find top logon failure user, which is suspect of malware infection
  • easily find most visited port on the routers to find possible attack
  • SEM traffic type sort report is useful tool to control unnecessary network usage
  • wish SEM could update by itself
Score 8 out of 10
Vetted Review
Verified User
  • Make sense of syslog entries from a variety of sources
  • Tarck USB device usage
  • Track login attempts, successes and failures
  • Easier custom reporting
  • Automate alerts when certain thresholds are met
  • Easier rule writing
Score 9 out of 10
Vetted Review
Verified User
  • Logging network devices and servers
  • Searching Historical Events
  • Notifications and custom rules
  • Sometimes get duplicate log entries for the same event
  • There is a moderate learning curve for setup and maintenance
Score 9 out of 10
Vetted Review
Verified User
  • Categorizing of events in different buckets: Security, IT Operations, Change Management, Authentication, Endpoint Monitoring, Compliance.
  • Intuitive configuration via Wizards, with meaningful examples and interactive help.
  • The ability to create rules and set up actions for select events, using predefined templates.
  • Better integration with npm, rather than being a standalone product.
Score 8 out of 10
Vetted Review
Verified User
  • Process Syslog/trap and event messages
  • Provides an easily understood dashboard
  • easily processes events from agent and non-agent devices
  • Reporting uses Crystal Reports which is very limited and not intuitive
  • Process for building custom filters needs more in-context help tools
Score 8 out of 10
Vetted Review
Verified User
  • Log collection
  • User-friendly and Easy dashboards
  • Queries seeped (according to our size)
  • log data parsing is good. if you upgrade some systems, most likely SEM will recognize it
  • Agent installations are easy but there are some meaningless steps
  • Can be add an advanced reporting process or module
Score 10 out of 10
Vetted Review
Verified User
  • SOC Dashboard
  • Compliance Reporting
  • Node Health
  • User Logon Events Dashboard
  • Poor Performance for 10,000+ elements
  • Poor Performance for real-time dashboard when over 10K nodes
  • Poor database performance for extra large global enterprise
Score 1 out of 10
Vetted Review
Verified User
  • It gives you [the] ability to see logs in one central location
  • Inbuilt rules and filters
  • How to build custom [rules] for individual purposes (e.g. rules for Admin users on critical systems, log on, log off, brute force, scanning)
  • Customer support should be timely and available
  • Videos to onboarding systems should be made ( e.g, websites, servers, wireless access point, active directories, firewalls, Domain controls, etc)
  • Hard to achieve unwanted logs
  • Updates for SEM users should be made available (New features and usability)
  • No user-friendly support
  • No health check of the SEM by Solarwinds
  • Support needs to improve
  • Videos to be sent to users on how to create custom rules to fit individual purposes
  • Training on each feature of the SEM tool should be made available in a specific location on SolarWinds website
  • Best practice videos and use cases should be made available
Score 7 out of 10
Vetted Review
Verified User
  • Easy to utilize--the rules are straightforward and pre-configured. You just have to customize them to fit your environment.
  • Great customer service, which is incredibly useful when you want help with better utilizing the SEM.
  • Easy and clear filters when looking for specific information without your environment.
  • The SEM can be rather slow--an increase in CPU and RAM appeared to fix this problem fairly easily though.
  • The SEM has lately required reboots for us fairly often. This is something we are currently working with support to resolve.
  • The SEM could release additional graphic options to help better display data to management.
Score 8 out of 10
Vetted Review
Verified User
  • Has a nice user-friendly interface. Some SIEM can be daunting to learn how to use and get acclimated to, but LEM has an intuitive layout and is very easy to pick up and use.
  • The logging agent in the source device is really simple to deploy and integrate.
  • Monitoring and reporting the account disablement with detail to whoever disabled an account for audit and compliance.
  • Some logs are not parsed well, happen to depend on the external log parser tool.
  • The update method needs to be made even simpler, auto update would be better.
  • The email alert features with SolarWinds will send a large number of emails if the number of alerts email. The duplication of email alerting needs to be reduced.
Joseph Crook | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
  • We use the client on register systems as event forwarders and log collection.
  • It enables us to verify the access security to high value workstations and register systems.
  • It provides a repository storage for log files so that they do not solely exist on workstations.
  • It helps us ensure PCI standards are being maintained and track security risk issues as well as system health.
  • Within the scope of my role I have noticed that the client can be problematic during system startup - some of the register systems we use are older and have lower resolution screens. When the client loads it pops up on screen but completely out of scale (to clarify, it may open a window that is 14x14 inches on a screen that only displays 10x10 inches. This is more frustration than a functional problem.
  • Automated rollout would be useful but it is outside of my scope in my job to even know if it already has automated install capability.
  • The GUI itself is a little clunky and there is somewhat of a learning curve - training is provided to clients however a friendlier interface would be helpful.
Score 9 out of 10
Vetted Review
Verified User
  • Easy to install virtual appliance
  • Out of the box configuration that works with little modification
  • Price isn't based on events it's based on monitored nodes
  • It may not scale to millions of nodes
  • Searches way back in time take a little longer due to compression
  • Not many Cons really!
Score 10 out of 10
Vetted Review
Verified User
  • Graphs showing important events
  • First-time setup and addition of new devices is easy and organized
  • Performance is excellent
  • Reporting could allow for more customization
  • Better integration with other products of SolarWinds line
  • More alert options
Score 8 out of 10
Vetted Review
Verified User
  • Brings together security events from multiple system sources.
  • Allows IT to review and manage security related events.
  • Provides convenient filters/views allowing us to narrow down the data we want to see.
  • Some improvements in user documentation could be helpful.
Score 8 out of 10
Vetted Review
  • Customizable dashboards, where you can see everything you want.
  • Easy to set-up connectors.
  • Fully customizable event filters.
  • Unable to set up some legacy equipment (Zyxel switches).
  • Not an easy to product to learn from scratches.
Return to navigation