Home » Articles posted by Anders Bengtsson (Page 43)

Author Archives: Anders Bengtsson

Links during April

April 29, 2007

Some intresting links during April

  • System Center Operations Manager 2007 Pricing and Licensing, finally some information, here
  • A new version of Exchange Server Management Pack Configuration Wizard that will work with Ops Mgr and Exchange 2007, here
  • HP StorageWorks Management Pack for SCOM 2007, download here
  • What’s New? Why Upgrade to System Center Operations Manager 2007 (white paper)
  • System Center Operations Manager 2007 Overview (white paper)
  • How to Backup and Restore Encryption Keys in Operations Manager 2007 (link)
  • A great Ops Mgr command shell site (link)
  • System Center Essentials Support Forum (here)
  • New Terminal Services Management Pack (here)

Linux, Syslog and System Center Operations Manager 2007

April 26, 2007 / 3 Comments on Linux, Syslog and System Center Operations Manager 2007

We all know that there is no pure Microsoft environment. There is for example often a old Linux box, and that box need to be monitored as well as everything else. If you answer “no, it dont”, why dont you shut down that box immediate? In this post I will show how to get syslog messages from a Linux machine (Red Hat Fedora 6) into your Operations Manager 2007.

First you will have to modify your Linux to forward messages to your Operations Manager machine, and then create a rule in your Operations Manager server.

You will have to modify your Linux to forward messages to your Operations Manager machine. That you will do in the /etc/syslog.conf file. At this screendump you can see that I have added one line that will send all messages (*.*) to my Operations Manager server (10.1.3.15). After added that line, and save changes (:wq!), you will have to restart the syslog service, that you can do with “service syslog restart”. There are a lot of settings that you can do in the syslog.conf to only forward some category of messages.

After that the Linux side is finish. As you can see with the “netstat –an” your Operations Manager server is not listening to the standard port (UDP port 514) by default. Your server will not do that until you have an active rule (not disabled) that use SysLogDS as data source. To create a rule to collect your syslog messages,

  1. From the Start Menu, select the SCOM Operations Console
  2. In the Navigation pane (left), Click Authoring
  3. In the Authoring pane, right click Rules and choose “Create a new rule…” from the context menu
  4. On the Select a Rule Type screen, select Alert Generating Rules\Event Based\Syslog (Alert), click Next
  5. On the General screen, input a suitable rule name and a description, click select and choose your management server in the select a target type window (select the machine that will recive syslog messages), click OK, back on the General screen, click Next
  6. On the Build Event Expression screen, create an expression, unfortunately I have not figur how to build a good expression. Input a expression and then delete it later. Click Next
  7. On the Configure Alerts screen, input an alert name, priority and severity. In the Alert description box, input as this screenshot. If you dont do this there will be no alert description in the console. With this config you will get a alert description like below. Click Create.
    Alert in Console
  8. In the Rules pane, right click your new rule and choose “Properties” from the context menu
  9. On the rule properties screen, click the Configuration tab
  10. On the rule properties screen and the configuration tab, click Edit under Data Sources
  11. On the expression screen, select the expression and click Delete. Click OK
  12. On the rule properties screen, click OK

That should do it!

Now we dont have a filter on the Ops Mgr side, but you can filter on the Linux/syslog side, until you have figur out how to do a good filter on the rule. You read about creating filter in this KB from Microsoft. It is about syslog in MOM 2000/2005 but the filter part is the same.

 

 

Management Pack Catalog

April 25, 2007

If you look in the management pack catalog you will now find management packs for Operations Manager 2007 too. You will find the catalog here. Most of the management packs are unfortunately still only available through evaluation software package and the volume licensing webpage.

Active Directory integration in Operations Manager 2007

April 11, 2007

Pete Zerger (MOM MVP) and I collaborated on a guide about Active Directory integration in System Center Operations Manager 2007.

Operations Manager 2007 integration with Active Directory is designed to minimize cost and effort in Ops Mgr  agent administration, by allowing an administrator to publish agent configuration details in the Active Directory domain partition related to desired Operations Manager 2007 Management Group membership, as well as desired primary and failover management server settings.

Read the guide here

Agentless Exception Monitoring (AEM)

April 2, 2007 / 1 Comment on Agentless Exception Monitoring (AEM)

Operations Manager client monitoring mode enables the administratorsto monitor operating systems and applications for error. Client monitoring configures clients to send error reports to an Operations Manager Management Server insted of Microsoft. With the reporting function client monitoring mode can then generate reports based on these errors. Error reports can be send from the Ops Mgr server to Microsoft. Two good things about AEM are that clients dont need a agent and all client settings are controlled by a group policy.

Windows Error reporting is a feature of Windows XP and Windows 2003 server. If you are running Windows 2000, this is a function included in applications, for example Office.

A great benefit of this are that administrators can get a report about application problems within the organisation. This information can be foundation for software upgrade, software updates and purchase of new software. This information will help administrators to get a overview of software problems within the organisations, and that can help the organization to maintain the productivity instead of fighting with software filled with problems.

 

 

EAM Errors.
  

This is not post a complete step by step guide about configure AEM, if you are having problem with this, please contact me in a news group and I will help you. Here is a general overview how to setup AEM (step by step guide will be uploaded later…)

  1. Enable client monitoring mode on management server in the Administration part of the Console. This will start a wizard where you will input for example a directory to store the client monitoring mode data. You can also replace Microsoft and enter your own organization name, this will be in the dialog box when a application crash at a client. During this wizard a ADM file will be created, including all GPO settings that you need to control clients.
  2. In a GPO, import your ADM file created during step 1, then enable all policies from that ADM file. Some settings will be set to disable even if you set them to enable. You will have to “show GUI” within them to keep them enable, but you dont have to do that, it will work anyway.  

That should do it! Now your management server will recive errors and you can see reports about applications with errors. You can look at this in the console, under monitoring and Agentless Exception Monitoring. There are a number of defaul views

  • Application Error Events, all applications from all machines
  • Application View, state view that lists applications
  • Crash Listener View, management servers listening for failure/errors
  • Error Group View, applications errors by error group
  • System Crash View, computers that have an OS failure

Under Administration/Settings/Error Transmission you can setup everything about forwarding errors to Microsoft. Don´t forget to setup this.

If you want to test your AEM settings there are a couple of good ways, first a KB how to generate blue screens and then BANG.

This post was written in collaboration with Björn Axéll, thanks for good discussions and tips.

MOF, ITIL and System Center Operations Manager 2007

April 1, 2007

When a organization pass the stage from an IT department that is just a bunch of guys and to a business focused unit providing IT solutions for their business, then they will need some kind of  framework and best practices.  In general, frameworks for IT is all about managing your IT services to the same high level of quality you expect from the rest of your business processes. In this post I will write about two well known frameworks, ITIL and MOF, and also give some examples how Operations Manager 2007 provide the organization with tools for those frameworks.

IT Infrastructure Library (ITIL)
ITIL is a compile of best practices from companies around the globe. ITIL describe in general how to structure work and organization to deliver IT services in a stabile and effective way.  There are eight disciplines with ITIL:

The IT Service Management sets

  • Service Delivery
  • Service Support

Other operational guidance

  • ICT Infrastructure Management
  • Security Management
  • The Business Perspective
  • Application Management
  • Software Asset Management

To assist with the implementation of ITIL practices a further book was published providing guidance on implementation (mainly of Service Management):

  • Planning to Implement Service Management

Microsoft Operations Framework (MOF)
Many companies have accepted ITIL and then modify it to its own framework, for example IBM, HP and Microsoft. Some companies add new components and some merge it with already existing framework.  Microsoft Operations Framework is built upon ITIL. MOF does the work of adapting ITIL with specific guidelines for using Microsoft products and technologies.

The MOF model includes the following parts

  • Changing (where new service solutions, technologies, systems, applications, hardware and processes are introduced)
  • Operating (performing day to day tasks effective)
  • Supporting (resolution for incidents, problems and investigation)
  • Optimizing (minimizing costs and optimizing performance, capacity and availability in delivering IT services for the organization)

System Center Operations Manager 2007
With the four areas above in the mind, what can Operations Manager provide us with and help use work with ITIL and MOF?

Changing – When new products and technologies are introduced you should make sure they can be monitored in Operations Manager; if there is no management pack from the vendor you can build your own. You can also use reports and performance view to plan you new system and how it will work together with the rest of systems. 

Operating – All day to day tasks can be initiated from the Operations console. Tasks are built in every management pack, but you can also build your own. If you have a daily task where you manually check if X = Y or Z and then you do something. Why don’t let Operations Manger look for you and perform that task? You can do that as a response on an alert or with a script.

Supporting – This is what operations manager is about, monitoring. From Operations Manager you can interpret and act on information or problems when it occurs. Operations Manager also includes links to both a company knowledgebase and to Microsoft product knowledge. This will help you to minimize time taken until the incident are resolved. Operations Manager support role based monitoring and security. This will make it easier when setting up notification and console scope for different teams within you organization. Operations Manager is designed as a model based health monitoring service. A object can be a low-level singel CPU but it can also be the entire array of devices and services that comprise a complete supply chain system.

Optimizing – Operations Manager can monitor performance and also generate reports to help you find bottlenecks and also plan new purchases. Every management pack includes a number of reports. Operations Manager can also help you plan maintenance to minimize unnecessary downtime. A exemple of function for this is distributed applications where you can setup all dependences within your IT environment. 

During System Center suite rollout we will see more of model-base management, ITIL, MOF and Dynamic Systems Initiative (DSI), all technologies that help businesses enhance the dynamic capability of its people, process, and IT infrastructure.

 

Links during Mars

March 30, 2007

Intresting links found during mars. A lot of them are from Microsoft Management Summit 2007 (MMS 2007)

  • A new version of the Exchange MP are available. Download it here 
  • Demo: Windows Server Virtualization management, watch it here
  • Number of Microsoft Certified Professionals Wordwide, info
  • The unofficial source for all your MP authoring needs in System Center Operations Manager 2007, Authorsmps.com
  • More Operations Manager 2007 webcasts here
  • System Center Operations Mananger 2007 documentation, here and here
  • How to test notification settings after you configure e-mail notifications for a recipient or for a subscription in Operations Manager 2007, KB
  • Error message when you click Record after you start the Web Application Editor in Operations Manager 2007: “The requested lookup key was not found in any activation context”, KB
  • Microsoft Management Summit Podcasts, download here
  • System Center Operations Manager 2007 Overview Datasheet, here
  • Monitoring Exchange Server and Unified Communications with Operations Manager 2007 Datasheet, here
  • White Paper – What’s New? Why Upgrade to System Center Operations Manager 2007, here

Microsoft System Center Operations Manager 2007 RTM Evaluation Edition

March 25, 2007

System Center Operations Manager provides an easy-to-use monitoring environment which includes thousands of event and performance monitors across hundreds of operating systems and applications to provide a single view of the health of an organization’s IT environment. The evaluation edition is valid for 180 days after installation.

File Name: OM2007 EvalCDImage.exe
Version: 2007
Date Published: 3/23/2007
Language: English
Download Size: 280.8 MB

You can download it here

Where did repeat count go?

March 24, 2007

Are you missing the repeat count column in Operations Manager 2007 default Active Alert view? Then you can simple right-click the view, choose “Personalize view…” and check “Repeat Count” under “Columns to display”. Then click OK and you have the repeat count column again. Note that in the “Personalize View” window you can choose how to sort columns, for example if you choose severity you will fast see which alert in the view that are the most serious. 

Alert Resolution States

March 24, 2007

As you might notice there are only two resolution states in Operations Manager 2007, new and closed. Most likely you want to add more states. That you can do like this:

  1. Start Operations Console
  2. Click Administration and then Settings
  3. Right-click Alerts and choose Properties
  4. In the “Global Management Group Settings – Alerts” windo click “New…” and add resolution state. Click Ok, and then Ok again in the first box.
  5. Now you can right-click a active alert (under Monitoring) and set the new resolution state

Post navigation

Older posts Newer posts