When critical events happen, you need to respond immediately to prevent disaster – whether it’s a service outage during business hours or a threat infiltrating your infrastructure. With the arrival of SolarWinds Log & Event Manager (LEM), you can respond to security, operational, and policy-driven events immediately using Active Response technology.
With a library of built-in Active Responses, SolarWinds Log & Event Manager executes the automated responses you need to mitigate threats and respond to operational issues immediately. Take actions like quarantining infected machines, blocking IP addresses, disabling user accounts, killing unauthorized processes, restarting services, and more.
Protect Your Infrastructure with Active Response Technology
SolarWinds Log & Event Manager includes an extensive library of actions that can be automatically executed, so you can start protecting your infrastructure right out of the box. Built-in Active Responses include:
- Add or remove users from groups
- Append text to a file
- Block an IP address
- Create, disable, or delete user accounts and user groups
- Detach USB devices
- Enable or disable domain user accounts, local user accounts, or Windows® machine accounts
- Kill processes by ID or name
- Log users off
- Remove user-defined group elements
- Reset user account passwords
- Restart or shutdown machines
- Send incident alerts, emails, or popup messages
- Start or stop Windows services
Discover how the Active Response technology in SolarWinds Log & Event Manager can mitigate threats in your infrastructure!