Home » System Center Operations Manager 2007 (Page 8)

Category Archives: System Center Operations Manager 2007

Timed Script Two State Monitor

November 29, 2008 / 2 Comments on Timed Script Two State Monitor

This is an example how to use a timed script two state monitor to monitor a file exists. If the file exists the monitor is healthy.

  1. Create a Timed Script Two State Monitor, input suitable name, scheudle, target and description.
  2. Input this script below
  3. As unhealthy expression input “Property[@Name=’Status’] equals Error”
  4. As healthy expression input “Property[@Name=’Status’] equals Ok”
  5. Configure alerts and then your done.

Dim oAPI, oBag
Set oAPI = CreateObject(“MOM.ScriptAPI”)
Set oBag = oAPI.CreatePropertyBag()
Set objFSO = CreateObject(“Scripting.FileSystemObject”)
strFile = “C:\myfile.log”
If objFSO.FileExists(strFile) Then
Call oBag.AddValue(“Status”,”Ok”)
Call oAPI.Return(oBag)
Else
Call oBag.AddValue(“Status”,”Error”)
Call oAPI.Return(oBag)
End If

Ops Mgr 2007 R2 Beta 1

November 21, 2008 / 3 Comments on Ops Mgr 2007 R2 Beta 1

Beta 1 of Ops Mgr 2007 R2 has been released to the connect website. You can download the beta there and start evaluating it. On the system center team blog there is a good post about R2 and all the news. Below you can see and read about some of the news in R2. One of the first things I noticed is how fast everything in the console is.

When you import new management packs you can select “Download Management Packs”. With that you can import directly from the system center ops mgr 2007 catalog. The wizard will show you which MPs are in the catalog and if they are newer then the version you have installed.

 

When you right-click an alert you get the option to create a notification based on that alert. It looks almost as the “create rule wizard” in Outlook. There are a number of criteria and conditions you can use when creating a new subscription. 

 

 

Under the Authoring workspace there are a number of new management pack templates, including a couple of Linux and UNIX machines.

 

There are also a number of new objects under management pack objects, for example Service Level Tracking. Service Level Tracking enables you to follow the performance and availability objects/services in your environment. You can create monitors to monitor your commitments, service level objective goals.

 

Under the administration workspace there is a number of news. One of the important features of R2 is support for Unix and Linux servers. When you run the discovery wizard you can now choose to discover Unix and Linux computers. When creating smtp notification channels you can select importance for your notification.

 

On the R2 beta CD there is a new version of the Authoring Console too.

Notes from the Ask The Experts Booth

November 8, 2008

During TechEd EMEA I have been working in the Ask the Expert booth, discussing Operations Manager. There have been some really good questions during the week.

Q: What´s new in Operations Manager 2007 and when will it be released? A: I wrote a post about R2 yesterday, read it here. R2 will be RTM around May/MMS 2009.

Q: Can I monitor multiple forests with Operations Manager? A: Yes you can. The new AD MP supports multiple forests. Andy has a good summarize about the new AD MP here.

Q: Where do I start with Operations Manager 2007? A: If you want to read a book, I recommend this book. If you want to read online, you will find all MSFT documents regarding Operations Manager here. Microsoft have also released a new version of their course, more info here. If you want to download an evaluation copy you can do that here.

Of course there were also a lot of questions about cross platform and monitoring non Microsoft devices with Operations Manager. In this demo Barry Shilmover uses Ops Man to manage an application that is spread across SQL Server, Oracle, MySQL, Apache, and IIS, hosted on Windows, Solaris, Suse, and Redhat. You can also read about the cross platform extension in this blog post.

Ops Mgr 2007 R2

November 6, 2008

R2 will include a number of new things. One of the really big news in Ops Mgr 2007 R2 is cross platform capabilities. In this demo Barry Shilmover uses Ops Man to manage an application that is spread across SQL Server, Oracle, MySQL, Apache, and IIS, hosted on Windows, Solaris, Suse, and Redhat. Other news are integrated service level reports and dashboard, better performance and a number of improvments in the console for example new monitoring templates.

The Operations Manager 2007 R2 Beta will be available for download end of November. You can read more about Ops Mgr R2 here.

Microsoft Hyper-V Server and System Center

October 7, 2008 / 1 Comment on Microsoft Hyper-V Server and System Center

I installed a Microsoft Hyper-V Server a couple of days ago. Hyper-V Server is a version of Windows Server 2008 core that includes the Hyper-V role, all other roles are disabled. There is a new simple interface to configure the server. You can also use the Hyper-V MMC and System Center Virtual Machine Manager to administer your Hyper-V server. More info about Hyper-V Server here.

I installed an agent from Operations Manager 2007 without any problem. However I found out that Ops Mgr found the machine as 2008 full installation (installation type = full), not as a core machine (installation type = core). Not the worst thing, but it is good to know. You can see it if you create a new state view target Windows Server 2008 Computers.

I also tried to install a Data Protection Manager 2007 agent on my Hyper-V server. First DPM could not identify my Hyper-V server as a known Windows version. In Active Directory I could see that my Hyper-V server operating system is set to “Hyper-V Server”, not “Windows Server 2008 Enterprise” as my other core machines. When I changed it to “Windows Server 2008” there was no problem adding it to DPM and installing the agent. I guess that the DPM query does not recognize “Hyper-V Server” as a supported operating system, but that works too after this “workaround”.

Change Default View in the Web Console

September 14, 2008 / 1 Comment on Change Default View in the Web Console

If you want to change the default web console view there are at least two ways to do it:

  1. Start the web console, find the view that you want to open first, for example “Contoso Alerts”. Then create a new shortcut to http://WebConsoleServer:51908/default.aspx?ViewName=Contoso Alerts
  2. The second way is a little bit more complicated. Start the web console, navigate to the view, right click in the navigation tree and select “view source”. The in the source, search for the name of the view and you will find the “onNodeClicked code” on the same line, for example 4cb2t5a7-b4b4-2621-2e7b-e346ag52f2ed22. You will also need the ViewType, you can find that next to the “onNodeClicked code”.Then create a new shortcut to http://webconsoleserver:51908/default.aspx?ViewID=8db1f5a7-f3f3-2646-6c6b-e34672f7ed98&ViewType=AlertView , insert the ViewType and onNodeClicked code.

Groups to Classes

August 8, 2008 / 1 Comment on Groups to Classes

This management pack allows security groups in Active Directory to be used to discover classes in Operations Manager 2007. For example if you already have your servers divied into security groups in Active Directory you can use populate classes from those groups and use the same in Operations Manager 2007 for targeting.This management pack needs to be adapt to your environment before you can use it. I recommend you to do that in the Authoring Console.

The management pack includes two classes, Contoso.GRP2CL.Fileservers and Contoso.GRP2CL.AppServers. Both these classes have one discovery rule each. The discover rules use script to check if the local machine is member of a specified security group in Active Directory. If they are, they create a instance of the class. The LDAP path is configure in the script. You should also change the discovery schedule, default time is every two minute.

The management pack also includes two state views to show which machines that are in the classes.

Every two minute it runs a script on all windows servers to see if they are member of a security group in Active Directory. If they are, a instance of the class is created.

Download the package here. Please note that this is a sample/idea, make sure to test and review it in a testenvironment.

Script: Notification Based on Keyword

August 3, 2008 / 2 Comments on Script: Notification Based on Keyword

I have written a script to show an idea how to get notification based on keywords. I have a power shell script that checks new alerts for the keyword and sends notification. This is occurs outside of the Ops Mgr console, so you will not see this under recipients or subscriptions in the console. The power shell scripts get both keywords and recipients from a configuration file. After a notification is sent the custom field 1 is updated on the alert, so the script will not send multiple notification for the same alert.

You can modify this script to include more attributs from an alert, with default settings it is only searching the alert description.

All information is included in the readme file.

Download the package here.

Script: Shares Creation

July 30, 2008

Earlier I have post scripts to check network shares, if they are available over the network. This script is also working with shares, it verify if all shares on the machine is approved. Unfortunately we don´t have a central database with all configuration yet but in this example I have solved that with a file on the agent managed machine, including the names of all approved shares.

This script lists all shares, it compare them with share names in a local file. If the share is not in the local file a local event will be generated with the share name and the path to the shared folder. You can pick up that event with Ops Mgr or MOM and generate an alert.

Download there script here

ACS and Windows Server 2008

July 22, 2008 / 6 Comments on ACS and Windows Server 2008

Microsoft Audit Connection Service (ACS) is a new function in SCOM 2007 that can collect logs from machines. All logs are saved in a special Audit Collection database. You can then run reports against the database to see trends and do security analyzes. You can also for example trace a user activity over many systems.

Operations Manager (Ops Mgr) comes with a number of ACS reports but most of them only work with Windows Server 2003. I have customers who have upgrade to Windows Server 2008 and now experience that ACS no longer is working. That is due to ACS reports are looking for Windows Server 2003 events. For example the “Usage _-_User_Logon” report is looking for event ID 540 and 528, but in Windows Server 2008 the logon events are ID 4624 and 4648.

Another problem with ACS reports is that you can’t schedule them with relates dates, for example “last week first day” and “last week last day”.

To create a new report to show all logons (event ID 4624) for a domain user, last seven days, you can use the build in SQL Report Builder. These presuppose that you have ACS installed correct. You can read how to deploy ACS here.

  1. Start the Operations Manager 2007 console and navigate to the Reporting workspace, click “Design a new report”
  2. In “Microsoft Report Builder” select Audit as source of data for your report, select table report layout and click OK
  3. Click and add a title, for example “Contoso – Domain User Logon
  4. From “Fields” drag and drop “Logon Time” to the table
  5. From “Fields” drag and drop “Target User” to the table
  6. From “Fields” drag and drop “Event Machine” to the table
  7. From “Fields” drag and drop  “String 13” to the table
  8. From “Fields” drag and drop “String 02” to the table
  9. From “Fields” drag and drop “String 12” to the table
  10. From “Fields” drag and drop “String 03” to the table
  11. Click “Fields” in the tools menu
  12. In the “Filter Data” window, from “Fields” drag and drop “Event ID” to the “Dv Alls with” box. Select event ID 4624 in the drop down menu
  13. In the “Filter Data” window, from the “Fields” drag and drop “Logon Time” to the “Dv Alls with” box. Select “Logon Time on or after 7 days ago” and “Logon Time on or before today”
  14. In the “Filter Data” window, from the “Fields” drag and drop “Target Domain” to the “Dv Alls with” box. Select “Target Domain equals ”
  15. In the “Filter Data” window, from the “Fields” drag and drop “Target User” to the “Dv Alls with” box. Right-click “Target User” and select “Prompt”.If you don’t add a filter to this formula you will get a drop-down menu with all usernames to select from. (Right-click “Target User” and select “Edit As Formula”, double click “Parameter: Target User”, expand, add a simple filter, for example a empty filter)
  16. Rename the table cells, to for example
    Event Machine to “Computer (Logon on to)
    String13 = Auth Package
    String02 = Logon Type
    String12 = Logon Process
    String03 = Computer (Logon on from)
  17. When you are happy with your new report you can test run it with the “Run Report” button. You can then save the report to your report server on the File menu.

It can also be nice with an information box both what this report does and what all different logon types mean. Also insert a filter description to your report from the Insert menu.

Useful Links
Description of security events in Windows Vista and in Windows Server 2008, link
Audit Category: Logon/Logoff (Vista and Windows Server 2008), link

Post navigation

Older posts Newer posts