Log & Event Manager

A SIEM that makes it easy to use logs for security, compliance, and troubleshooting

Starts at $4495


Fully functional for 30 days

Try Interactive Demo
  1. Normalize log data to quickly spot security incidents and make troubleshooting easy.

    Log & Event Manager normalizes logs so your rules and reports work regardless of the source. For example, see all logon failures regardless of the original log structure.

    Read the white paper

  2. Out of the box rules and reports make it easy to meet industry compliance requirements.

    Log & Event Manager includes rules and reports for standards like HIPAA, PCI-DSS, SOX, GLBA, NCUA, NERC-CIP, DISA-STIG, and more.

    View Legacy Bank’s case study on compliance

Key Features

  • Node based licensing

    Licensing based on number of nodes, such as servers and network devices, with special pricing for endpoints.


  • Real-time event correlation

    In memory, cross platform event processing for instant notification and remediation without waiting on data queries.


  • Search log data

    Simple keyword search or powerful custom queries using drag-and-drop interface. Save, share, and schedule searches for efficient forensics.


  • Real-time remediation

    Mitigate issues in real-time with Active Responses that will Block IPs, change privileges, disable accounts, block USB devices and kill applications.


  • File integrity monitoring

    Monitor and alert on registry, file and folder activity to detect suspicious and malicious behavior. 


  • High data compression

    Average data compression of 95%. Simply provision more storage to the virtual appliance to expand data retention as needed.


More Features

USB Defender

Detach unauthorized USB devices and monitor file activity for potential data theft.

Scheduled Searches

Schedule an automatic search and receive an email with the results attached.

Custom Email Templates

Customize email alerts with additional text and formatting.

Threat Intelligence Feed

Find evidence of malicious activity via an automatically updated list of bad IPs.

Configurable Dashboard

Create and customize widgets to display critical events across your IT environment.

User Defined Groups

Add UDGs as white or black lists in filters, rules, and searches.

Event Explorer

Use Event Explorer for extended correlation rule analysis.

Single Sign-On/Smart Card Integration

Easy single sign-on via user ID and password, smart card, one-time password or biometric device.

Helpful Resources

What Our Customers Are Saying

Chesapeake Bank saved over $50,000 with Log & Event Manager within the past 12 months

Chesapeake Bank uses Log & Event Manager to identify and deal with “user lockout and network issues”, and rates it 8/10 because: “Once configured, you get real-time events in your environment.”

Aaron Offenbacher

Systems Engineer, Chesapeake Bank

Source: TechValidate. TVID: E84-59F-BAE

VXI Global Solutions Tracks Anomalies in Real-Time With Log & Event Manager.

“Log & Event Manager has allowed me to track anomalies within my network environment. Log & Event Manager is able to provide an accurate depiction of the network environment and the learning curve isn’t too steep.”

Simon Wu

Network Engineer, VXI Global Solutions CO Switch Communications

Source: TechValidate. TVID: 5A1-BE7-680

After installing SolarWinds Log & Event Manager, the City of Kennewick demonstrates and meets HIPAA regulatory compliance.

“With Log & Event Manager I was able to track down the source of a ransomware infection.”

John Reed

Senior Network Engineer, City of Kennewick

Source: TechValidate. TVID: 6C2-15A-1A9

System Requirements

Hard Drive

250 GB


8 GB


Dual Core, 2GHz


VMware® ESX/ESXi 4.0+
Hyper-V Server versions 2008R2, 2012/2012R2


  • Cyber Defense Magazine: Best SIEM Solution 2016

Used by Companies of all Sizes

Take the Next Step


Fully functional for 30 days


Get a quote within seconds

Let's talk it over

Call us at 866.530.8100

Email us at Sales@SolarWinds.com

Select a license


SolarWinds Log & Event Manager LEM30 (up to 30 nodes)



SolarWinds Log & Event Manager LEM50 (up to 50 nodes)



SolarWinds Log & Event Manager LEM250 (up to 250 nodes)



SolarWinds Log & Event Manager LEM500 (up to 500 nodes)



SolarWinds Log & Event ManagerLEM1000 (up to 1000 nodes)



SolarWinds Log & Event Manager LEM1500 (up to 1500 nodes)



SolarWinds Log & Event Manager LEM2500 (up to 2500 nodes)



SolarWinds Log & Event Manager LEM650 (up to 650 nodes)



SolarWinds Log & Event Manager LEM800 (up to 800 nodes)



SolarWinds Log & Event Manager LEM100 (up to 100 nodes)