Shocking stories of security incidents and identity thefts of various kinds worry you? Read our article on 'Combating Cyber Security Threats' in Express Computer:
http://www.expresscomputeronline.com/20091123/technology04.shtml
Bala
ManageEngine Password Manager Pro
Jingle bells are ringing on SIEM clouds!!
We have taken up support for Netflow logs on Firewall Analyzer, with more features on this bundle, probably a Christmas or a New year gift from Manage Engine shop.
For instance, a device's capability to throw Netflow packets were more restricted to devices like routers and switches. Cisco ASA v.8.2 firewall device has capability to throw Netflow packets along with syslogs. This is one of the mile stone achieved by Cisco.
Firewall Analyzer currently supports Syslogs for Cisco ASA device, and we intend to support Netflow logs from these ASA v.8.2 devices, very soon.
We are currently kick started our process to include log analysis for Netflow packets from Cisco ASA v.8.2 devices, apart from Syslog format support.
This being a top priority for us, we welcome your sample Netflow logs to include them in our test bed, and deliver solutions.
This feature enhancement along with a surprise bundle is planned to be premiered as a service pack over our current version,Firewall Analyzer .v.6.
Cisco ASA .v.8.2 users are requested to get in touch with our support for steps to be deployed on your device to generate sample logs, and get upload links for sending us these sample logs.
Be rest assured, your logs are treated confidential, and used only to test and provide solutions.
Do get in touch with us, in case you need a quick sneak peak on our next feature pack.
With SupportCenter Plus 7.5 Professional Edition, the support server can now offer Multi-Tenancy through Business Units. This means that multiple SupportCenter Plus installations can be combined into one install, with one central configuration database managing input requests to multiple group data files. The result is lower total cost of ownership for customers requiring a central customer support system environment since we are able manage Customer HelpDesk installs on fewer servers. Response times for single server multi-tenant customer support management are comparable to a single-tenant install.
Multi-Tenancy can be used for companies with separate brands or divisions. Example: a automobile company has two divisions, one that sells motor cycles and another cars. In this model, multi-tenancy would enable the company to have one SupportCenter installation, while each division has a separate database and customization of the application.
| |
|
Each Business Unit may be defined the following way: Group of companies belonging to same verticle, companies in same geographies, companies dealing with same products, etc...Hence the business units can be defined based on your company's needs...  Value offered through Business Units for Customer Support Management:
Happy Customer Support, Team SupportCenter Plus |
Hi Everyone,
Here is a step-by-step screenshot presentation on How to enable SNMP on Windows Servers. Hope you find this useful.
This is just a new initiative and more to follow from now…
If you are a beginner trying to understanding what is SNMP? Then I’m sure you will find our SNMP Tutorial informative. Check the tutorial at "http://www.manageengine.com/products/opmanager/what-is-snmp.html"
-
Kalvin
Team OpManager - The Network Monitoring Software from ManageEngine
Download | Interactive Demo | Product overview video | Twitter | Customers
Regards,At ManageEngine IT360, we always strive to ensure that the user must be able to perform complex tasks with little or minimal effort. In this post, I am going to talk about the three different operations you can perform in Dashboard page.
1. Generate Different Views of Your IT Business Services
ManageEngine IT360 offers four distinct views to view your IT business service(s). They are:
1. Your traditional List View
2. Tree View
3. Plasma View and
4. Global Business View
In your List View mode, you will be able to see the a bit more in-depth about the various business services that you have created. You will view the Availability, Health, Monitor Status, and Today's Availability (in % of uptime) of each business service created within IT360. By clicking on the health or availability icon, you can view the complete Root Cause Analysis (RCA) of the business service.
In Tree View mode, you can view entire list of business service sub-groups and its monitors. In this view, you can view the availability and health of those monitors. It also displays the list of 'Uncategorized Monitors' which are being monitored through IT360 but not associated with any of the business services.
With Plasma View mode, as the name suggests, you can display the entire list of monitors in a huge plasma screen. This view will contain the monitor's current status, major alarms created so far along with its business services health & availability.
And Global Business View displays the entire business services combined under a single business view. As before, you can host them in a large plasma screen for display.
2. Create New Business Services
'Add Business Service' is probably the most critical link in this page. This invokes the business service wizard. With the help of this wizard, you can create a new business service and associate critical monitors (network devices, apps, servers, etc) which are crucial for the business service operation. (I will be blogging about this later).
3. Create Different Dashboards for various stakeholders
This is probably one of the most important tasks of all. This operation allows you to create different dashboards for various stakeholders. You can create Network Dashboard for your Network Administrator, Server & Application Dashboard for your IT Administrator and Traffic Dashboard for your System and Network Administrators. In addition, you can also view existing dashboards and business views of various business.
To create a new dashboard click on any of the 'Add' link to create a Network,Server & Applications or Traffic dashboards.
So what are you waiting for? Go ahead and try these options :-)
Quite often we get this query from our evaluators and customers. We already have this data exposed in the OpManager knowledgebase; however I thought it would be nice to do a blog on it as well.
To analyze bandwidth consumption, we ran OpManager in an isolated environment and monitored the devices as listed below
Servers are monitored through WMI with default monitors
(CPU, Memory & Disk) associated.
Monitors like CPU, Memory and Interfaces Rx & Tx Traffic/ Utilization/ Errors/
Discards are associated to Network Devices (like Switches, Routers, Printers
and Firewalls) by default.
Monitoring Interval is set to 1 minute for all monitors and the status polling
is also set to 1 minute.
Here is the report for you...
UDP Traffic: 5225 bps
TCP/ WMI Traffic: 39435 bps
ICMP Traffic: 1980 bps (18 bps per device)
So, OpManager generates a total traffic of approximately 47Kbps within the LAN in order to monitor 100 Servers, 3 Routers, 3 Switches, 2 Firewalls and 2 Printers.
Hope you find this information useful.
One more info…Recently, we brought
out a new SNMP tutorial for beginners.
Do check out the animated gifs to explain SNMP communication for
various commands like GET, TRAP and INFORM.
-
Kalvin
Team OpManager- The Network Monitoring Software from ManageEngine
The Drudgery of Deploying Enterprise Solution
Customer satisfaction through innovation is a way of life in ManageEngine. Normally, deployment of log management (SIEM) solutions of top brands are not so simple. You require a number of files to be downloaded. Innumerable installations, configurations, and tuning etc., to start the deployed application. Often times, without the assistance of consultants it will be impossible to deploy a enterprise solution. To start running the solution and get the desired output, will be a tough task. For IT managers/administrators, deploying any enterprise solution will surely give few sleepless nights.
Escape from the Drudgery!
Embrace ManageEngine!!
ManageEngine Firewall Analyzer deployment for enterprises is a child's play.
1 - 2 - 3
Deployment in three steps.
#1
Download, install Distributed edition as Admin server in your central office/head quarters. (very few install time configurations).
Run the application.
#2
Send the downloaded file or send the application download link (same file doubles as Admin and Collector server. How Simple!!) and the Admin server details to the geographically remote location (your branch/sub office). Get it installed as Collector server in the remote location (here again, very few install time configurations). Get the Firewalls configured to monitor.
Run the application.
Replicate this step in all remote locations.
#3
Wait for 10 minutes.
Open Admin client UI in a browser. The reports of Firewalls in different parts of the world are there. Check it out.
The Solution: Firewall Analyzer 6 Distributed Edition
The procedure may not take more than an hour, staring from download to report roll out.
No cumbersome downloads. No consultant required. No training required. Minimal configurations. Global deployment can't get any simpler.
Scalability and feature set exceeds any other enterprise SIEM solution. Distributed monitoring very few have.
Experience it to believe it. Try Firewall Analyzer 6 Distributed Edition.
When a server goes down or when the response time of a database query exceeds the normal query execution time, any monitoring system in place should perform two actions. One to generate an alarm with relevant information (preferably the RCA - Root Cause Analysis) and secondly to log a ticket into a Service Desk solution. It may additionally execute an SMS action to notify the right technician.
With IT360, you can do that without any external interference. IT360 allows you to automate these actions thereby reducing time taken to troubleshoot the issue. In today's post, we will see how to create threshold, assign action and configure alarms so that the action is properly executed.Creating Thresholds
Thresholds are values on based on which the alarm is generated. For example, lets say the response time of an Apache server which acts as the web server for a website optimal response time is 1ms. When this value is breached or when the response time value goes higher, the website takes longer to load. Hence, it is critical to ensure that there is a threshold assigned to this web server and is carefully monitored.
In order to assign a threshold for this web server, follow the steps given below:
1. Click on 'Admin' -> 'Servers & Apps' -> 'Configure Alarms'.
2. Select the appropriate web server from the pull down menu 'Alarm Configuration by Monitors'. This will display the list of attributes for which you can assign thresholds for the particular web server.
3. Click on 'Associate' opposite to 'Response Time'. This will open a pop-up configuration window, wherein you can select the correct threshold corresponding to response time.
4. Click on 'Save' and 'Close' button to save and close the configuration window. You will now find that the response time for the Apache server is now configured and ready for associating an action.
Create Ticket Action
Now once the threshold is configured, click on 'Action' under 'Servers & Apps'. Click on 'Add New' under 'Log a Ticket' option.
1. Provide a proper name for the ticket.
2. Select the correct Category, Sub Category, Item, Priority, Group and Technician who will be responsible for this web server.
3. IT360 also allows you to insert relevant details into the Ticket content. This enables the technician to view relevant information. This allows the technician to troubleshoot the performance issue quickly.
4. Click on 'Log a Ticket' button to complete the process.
Additionally, you can also execute this action manually by clicking on this
icon. You can also update ticket's content, change category, sub category, etc by clicking on the edit 
icon.
Assign Ticket Action
Once the ticket action is created, click on 'Configure Alarms'. Click on the attribute for which you would like the ticket action to be associated with (in our case, the Apache Server's response time). Click on the 'Response Time - Cr > 1500ms'. In the configuration pop-up window, select the check box labeled 'Configure actions at Attribute level'.
Select the appropriate action that needs to be associated with this threshold value. You can create actions and enable them in such a way that you can get alerted when there is an issue, or when the issue clears or when the issue is going to get critical. Once you have chosen the action and clicked the 'Save' & 'Close' button, the configuration is done. The next time when the response time threshold value is breached, the technician is automatically notified. A ticket is logged into the Service Desk solution. In addition to this, you can also associate an SMS action to this threshold thus ensuring the technician receives the information as soon as the incident occurs.
Similarly, you can create an ad-hoc action by clicking on 'New Action' link inside the configuration pop-up window. It will allow you to create the following actions as displayed in the screenshot below.
