Home » Microsoft Operations Manager 2005 (Page 8)
Category Archives: Microsoft Operations Manager 2005
Execute a service request at a later dateSetup cannot locate the MOM database
“Setup cannot locate the MOM database” can come up when you install MOM management server and the database is on another server that is just installed. The cause is that the management server cant connect to the database server.
Workaround:
- Open “SQL Server Configuration Manager” on your SQL server
- Expand “SQL Server 2005 network configuration”
- Click “Protocols for MSSQLSERVER”
- Duble click TCP/IP
- Change Enabled No to Enabled Yes, then click Ok
- Restart the MSSQLSERVER service under “SQL Server 2005 Services”
What happens to mailflow during maintenance mode?
What happens to mailflow during maintenance mode?
There is a function in Exchange MP that test mailflow between mailservers. A friend asked me what happens to those test if one mail server is in maintenance mode?
I have two mail servers, MX01 and MX02. I run the wizard and setup mailflow test between them. After a while I start receive notifications every 10 minute that MX02 has sent a e-mail and MX01 received it.
I put MX01 into maintenance mode and waits 5 minutes to make sure that the maintenance mode flag has been changed in the OnePoint database, then I shut down MX01.
During the time when MX01 is in maintenance mode there still is events that MX02 has sent e-mails and all local test is ok. There is no alerts.
30 minutes later when MX01 returns from maintenance mode I received two alerts about missing heartbeat, that is normal because the server is still down.
10 minutes later I start MX01 again, all normal events under events in operator console. Mailflow events start coming back again, both that MX02 sends and MX01 receives. 10 minutes later this error is generated from MX01
Computer: MX01
Description:
Specified delivery latency of mail flow messages exceeded. Detailed information:
Delivery latency from MX02 (at Fri Jul 28 12:19:01 UTC+0200 2006) = 2926 (seconds)
Delivery latency from MX02 (at Fri Jul 28 12:49:00 UTC+0200 2006) = 1127 (seconds)
Delivery latency from MX02 (at Fri Jul 28 12:34:00 UTC+0200 2006) = 2027 (seconds)
Delivery latency from MX02 (at Fri Jul 28 13:04:00 UTC+0200 2006) = 227 (seconds)
This event was generated by the script: "Exchange 2003 - Mail flow receiver"
2000 seconds is around 30 minutes, the same as the maintenance mode. Â
Summary: There is no alert generated when one of the mail servers is in maintenance mode. Â At least not the first 30 minutes.
A tool to change number of days stored in SystemCenterReporting
Out of the box 395 days of data is stored in MOM Report database, SystemCenterReporting. There is now a unsupported tool to change this. The tool is named SCDWGroomingSettings and you can download it here. If you want to stick to the supported way but still want to change number of days you can read KB.
MOM databas on SQL 2005 X64
A hotfix is available to let you create a Microsoft Operations Manager (MOM) 2005 database on a computer that is running Microsoft SQL Server 2005, X64 Edition
http://support.microsoft.com/default.aspx?scid=kb;en-us;921278
SQL Server Management Pack
A new verion of “Microsoft SQL Server Management Pack for Microsoft Operations Manager 2005” are available. Version 9.0.2047.0000.
Count Files
Here is a script that will count file in a directory. If there is more than X file in the directory a event will be generated in the local event viewer. You can create a event rule that runs the script and a collection rule that collections event ID 2 from your machine. The local event will have event ID 2, you can also add criteria to check if description includes “There is more than”.
In the following example the script will monitor if C:\ have more than 2 files.
Set fs = CreateObject(“Scripting.FileSystemObject”)
folderName = “c:\”
numbers = fs.GetFolder(folderName).Files.Count
if (numbers > 2) Then
Const EVENT_WARNING = 2
Set objShell = CreateObject(“Wscript.Shell”)
objShell.LogEvent 2, “There are more than 2 files in the directory. The directory is ” & folderName & “. Number of files are ” & numbers End IfÂ
Common questions about MOM 2005
Here is a summary of some of the most common questions I have seen in forums
Is it possible to exclude a machine from a rule?
Yes it is. You can do this in some different ways. One way is to edit the rule and “enable rule-disable overrides for this rule”. You then choose a machine or a computer group that no longer will be affected by this rule. Remember to change “override name” else it will be hard to get a overview under “Override Criteria”, also remember to write down all your changes in your organization change log.
Is it possible to place a computer into maintenance mode with a script?
Yes, please read my article about maintenance mode.
How can I change importance flag on notification e-mails?
You can do it with MOM Notification Workflow. You change it in the AppADF.xml file.
How can I remove a management pack?
There was a KB about this before (http://support.microsoft.com/?kbid=918278) but it is not public anymore. What you can do is to disable the rule group and no rules will be active anymore. Â
Multiple resultats paneler in Operator Console
Do you think there is to less information in Operators Console and that you have to click a lot before you get a overview? One solution would be to add another result panel. For example then you can always is state about your network, even if you are working with another alert.  add more result panels:
- In Operator Console, click File and Console Settings
- In “Console Settings” raise “view pane configuration” to max tree. Then click Ok
and to see anything in your new result panel
- Click the new panel so it is marked
- Click a view (Alerts, State, Events Performance, Diagram…) for example Alert View
Â
Â
MOM and IPSec
Do you know which part of MOM that is encrypted?
When a new agent is installed is that traffic not encrypted. When the installation is done the communication is encrypted as default, if the agent is member of a domain. When the information has reached the Management server and is going to the database, the traffic is no longer encrypted. IPSec is a protocol that can provide this security. Â
IPsec (IP security) is a suite of protocols for securing Internet Protocol (IP) communications by encrypting and/or authenticating each IP packet in a data stream. IPsec also includes protocols for cryptographic key establishment.
Source: WikipediaÂ
IPSec can be used between the following machines
- Management server and MOM database server
- MOM database server and reporting database
- Management server and computer without agent
- Management server and operator console or administrator console (if they are running from another computer)
Traffic between agent and management server is encrypted by default and don’t need IPSec.
In this example the traffic will be encrypted based on information from the domain. If the machines is not in a common domain you can use shared keys or certification to encrypt the traffic. Below there is a walkthrough how to enable IPSec. There is other ways, for example Netsh and group policy objects.
- Start by running MMC and add the “IP Security on Local Computer” snap-in
- Right-click and choose “Create IP Security Policy
- Input a suitable name, for example MOM IPSec Policy
- Uncheck “Activate the default response rule”
- In “IP Security Policy Wizard” verify that “Edit Properties” is marked and then click “Finish”
- In “Policy Properties” unmark “Use Add Wizard” and verify that ” is unmarked and then click add..
- Under “IP Filter List” click Add..
- Input a suitable name in “IP Filter List”, then uncheck “Use Add Wizard” and click Add
- Choose “My IP Address” under “Source address” and choose “A specific IP Address” under “Destination address”. Input the IP of the other server and verify that “Mirrored” is marked, then click “OK”
- In “IP Filter List” click OK
- Back in “New Rule Properties” mark you new rule under “IP Filter Lists:”
- Under “Filter Action” choose “Require Security”
- Under “Authentication Methods” choose “Kerberos”
- Under “Tunnel Settings” choose “This rule does not specify an IPSec tunnel”
- Under “Connection Type” choose “All network connection”
- Click Apply and then OK
- In Properties, choose the new policy and click OK
- Right-click the new policy and choose Assign
- If you add “IP Security Monitor” snap-in in MMC you can verify that your new policy is active
Now do the same steps on the other server, don’t forget to change IP at 9.
Â
                                                                                                                                                                                              Â
Restart a process
This is a script that will monitor if a process is running more that once, if it is this script will kill them and restart it.  This example check if notepad.exe is running more than twice.
strComputer = "."
Set objWMIService = GetObject("winmgmts:" _
& "{impersonationLevel=impersonate}!\\" & strComputer & "\root\cimv2")
Set colProcesses = objWMIService.ExecQuery _
("Select * from Win32_Process Where Name = 'notepad.exe'")
'mineapp = "notepad.exe"
If colProcesses.Count => 2 Then
' Wscript.Echo mineapp & " is running 2 or more instances"
Set colProcessList = objWMIService.ExecQuery _
("Select * from Win32_Process Where Name = 'notepad.exe'")For Each objProcess in colProcessList
objProcess.Terminate()
Next
Set objShell = CreateObject("WScript.Shell")
objShell.Run "notepad.exe"
Else
' Wscript.Echo mineapp & " is running less than 2 instances"
End If
Recent Comments