Solved

SCOM Active Directory monitors

Posted on 2016-08-03
1
63 Views
Last Modified: 2016-09-23
I am looking to whittle down the alerts for AD and was wondering if anyone knew of a best practices guide for the most essential monitors. I believe the SCOM admin just fired up the AD Management pack and suggested we narrow it down. We have a large enterprise with about 180 DCs spread over the country and in a few other countries, so I find some of the alerts are transient causes by network issues more than AD. If anyone has a list or guide of essential monitors for AD it would give me a good start I can add to as needed. Thanks.
0
Comment
Question by:Jerry Dunning
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 14

Accepted Solution

by:
Schnell Solutions earned 500 total points
ID: 41740671
Hello Jerry,

In a similar way I use SCOM to monitor environments with +200 DCs distributed across regions. You are absolutely right, it is not enough with just firing up the AD Management Pack, what is recommended is to follow the .docx document that comes with the MP and follow step by step their configurations.

From a best practice perspective, the MP includes what Microsoft considers that is the best to monitor. However, each environment is different and it means that SCOM will require special turnings. So, despite of these best practices it is necessary to work with the MP Guide (.docx file) and configure, enable or disabled each monitor, alert, performance counter or component as it suits our environment. These configurations will include a initial configuration that includes create service accounts for SCOM, configure special permissions, configure dedicate watcher agents, configure special components if you want to monitor the health of special services, such as the SYSVOL folders replication, etc.

In summary, the general best practices are natively configured in the MP as it comes, but in particularly, we need to tune it. If not we will have a terrible experience with the product with many alerts that we will not wish to have.
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question