Solved

SCOM Active Directory monitors

Posted on 2016-08-03
1
55 Views
Last Modified: 2016-09-23
I am looking to whittle down the alerts for AD and was wondering if anyone knew of a best practices guide for the most essential monitors. I believe the SCOM admin just fired up the AD Management pack and suggested we narrow it down. We have a large enterprise with about 180 DCs spread over the country and in a few other countries, so I find some of the alerts are transient causes by network issues more than AD. If anyone has a list or guide of essential monitors for AD it would give me a good start I can add to as needed. Thanks.
0
Comment
Question by:Jerry Dunning
1 Comment
 
LVL 14

Accepted Solution

by:
Schnell Solutions earned 500 total points
ID: 41740671
Hello Jerry,

In a similar way I use SCOM to monitor environments with +200 DCs distributed across regions. You are absolutely right, it is not enough with just firing up the AD Management Pack, what is recommended is to follow the .docx document that comes with the MP and follow step by step their configurations.

From a best practice perspective, the MP includes what Microsoft considers that is the best to monitor. However, each environment is different and it means that SCOM will require special turnings. So, despite of these best practices it is necessary to work with the MP Guide (.docx file) and configure, enable or disabled each monitor, alert, performance counter or component as it suits our environment. These configurations will include a initial configuration that includes create service accounts for SCOM, configure special permissions, configure dedicate watcher agents, configure special components if you want to monitor the health of special services, such as the SYSVOL folders replication, etc.

In summary, the general best practices are natively configured in the MP as it comes, but in particularly, we need to tune it. If not we will have a terrible experience with the product with many alerts that we will not wish to have.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Losing network connectivity 8 73
Snapshot of Resource Monitor data 2 27
SBS 2011 certificates expired - need to renew? 4 37
ADFS Redirection 4 31
Resolve DNS query failed errors for Exchange
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target. To install the necessary roles, go to Server Manager, and select Add Roles and Featu…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now