Solved

SolarWind and DNS Server

Posted on 2016-10-12
12
91 Views
Last Modified: 2016-11-22
I'm trying to monitor my network with solarwinds but i cant add my dns server to the console with the WMI client can anyone help me with this.
0
Comment
Question by:George Martinez
  • 7
  • 5
12 Comments
 
LVL 5

Expert Comment

by:Leon Adato
ID: 41842113
What error are you getting? What account are you using to add  the machine?
0
 

Author Comment

by:George Martinez
ID: 41842146
when trying to add node the test config is failing and im using our domain admin account the same account that will let us log into the server
0
 

Author Comment

by:George Martinez
ID: 41842177
it not giving a true error message other than test failed
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 5

Expert Comment

by:Leon Adato
ID: 41842320
OK, good info. Tell me some more about the setup:
 - is the DNS server on teh same network as the polling engine or not?
 - Are you using a domain account, local (to the DNS server) account, or something else?
 - does the account have local-admin permissions
 - do you block WMI, either on the network or at the server level through GPO?
 - can you add other servers as WMI nodes, or is this your first attempt?
0
 
LVL 5

Accepted Solution

by:
Leon Adato earned 500 total points
ID: 41842323
Also, here's a guide (a little old, but still usable) on how to troubleshoot WMI connectivity:

https://thwack.solarwinds.com/community/solarwinds-community/geek-speak_tht/blog/2012/11/13/troubleshooting-a-wmi-node
0
 

Author Comment

by:George Martinez
ID: 41842672
-yes its on the same network
- yes ive tried to use our domain admin account and my account im also a domain admin
- yes
-i dont think we block wmi on the network maybe on the server how can i find out
- yes we have successfully added several servers with wmi and using the same admin account
i also tried to use the tool in that article on both the dns server and the solarWinds server on the dns i used the solarwinds ip as the target and i was able to communicate. But on the solarwinds server using the dns ip as the target i wasn't able to connect
0
 
LVL 5

Expert Comment

by:Leon Adato
ID: 41842688
So that tells me that the DNS server is blocking some aspect of incoming WMI requests. If your DNS server is also a domain controller, that could be part of the issue. Domain controllers are often more restricted than regular (non-AD) servers.

One thing to try AS A TEST is to turn off windows firewall on the DNS box. Don't do that for any significant length of time (and I'm assuming there's no chance of external connections to this box. If there is, FORGET THIS TEST).

If you can connect with firewall off, then you have your answer - You'll need to open up the WMI ports between teh DNS server and the polling engine (see this article for a full list of ports and how they're used: https://thwack.solarwinds.com/community/solarwinds-community/product-blog/blog/2013/01/08/wmi-portapocalypse)

If turning off firewall is NOT the problem, then you should
1) weep pitiably because the next step is annoying and painful
2) install wireshark on the polling engine
3) turn on wireshark and capture packets between the poller and the DNS server
4) try to do a test connection
5) stop the wireshark capture and analyze
6) drink heavily

The sad truth is that wireshark WILL tell you what's wrong. The equally sad truth is that unless you love wireshark, it's going to take a whole lot of effort to understand what it's telling you.

Let me know if this helps.
 - Leon
0
 

Author Comment

by:George Martinez
ID: 41842694
yes your right this box is also working as a domain controller. With that information should i still attempt all the other steps you asked me to do?
0
 
LVL 5

Expert Comment

by:Leon Adato
ID: 41842740
Well, you may want to check with the server admin team to see if they've locked down domain admin (which *is* local admin on AD boxes) for the DNS box specifically. Otherwise, yeah you still need to know what exactly is being blocked.
0
 
LVL 5

Expert Comment

by:Leon Adato
ID: 41842746
Anothre thought is to open a ticket for "Orion Framework" rjather than IPAM. Because this issue is not really related to IPAM as much as it's just pure connectivity. I know that SOME of our support team troubleshoot this issue all the time.
0
 

Author Comment

by:George Martinez
ID: 41843674
have you ever ran into an issue stating the rpc server is unavailable
0
 
LVL 5

Expert Comment

by:Leon Adato
ID: 41844018
Yes. that means the RPC service is either stopped, locked down, or something. RPC - remote procedure call - was a vector for hacking and viruses about a decade ago. Here's just ONE page (out of many) offering some thoughts on troubleshooting.

http://www.dell.com/support/article/us/en/04/SLN283117
0

Featured Post

Backup Solution for AWS

Read about how CloudBerry Backup fully integrates your backups with Amazon S3 and Amazon Glacier to provide military-grade encryption and dramatically cut storage costs on any platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
Issue: One Windows 2008 R2 64bit server on the network unable to connect to a buffalo Device (Linkstation) with firmware version 1.56. There are a total of four servers on the network this being one of them. Troubleshooting Steps: Connect via h…
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question