Using WMI to write scripts to monitor servers, specifically event logs works extremely well. I did just that with WMI at our company. I went as far as to script out the permanent monitoring of processes, processor, memory, disk, various eventlog combinations, and various filesystem details. Your scripts could be as simple as a couple dozen lines or a couple thousand lines like mine. We run this for about the past 2 years with definitive success. We have some automated actions defined using the ActiveScriptConsumer, but most alerts send email to a specific email account that has about 20 rules setup on it to redirect alerts to appropriate people throughout the organization.
There are some excellent WMI books at the book stores. Read a little...do a lot!
(I should also note that we are now going through a successful implementation of Tivoli [which is nearly completely WMI based for the Windows platform] and will soon disable the custom monitoring that I've written)
Eric Jones, Senior SE
Intel Server Group
(W) 336.424.3084
(M) 336.457.2591
www.vfc.com
| "Marco Bombardi" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED] 12/17/2003 10:38 AM
|
To: <[EMAIL PROTECTED]> cc: Subject: Re: [ActiveDir] Event Log monitoring tools |
You can always script it using either a temporary or a permanent event
consumer to take actions when particular events are logged.
Check out the Monitoring section of the Technet Script Center for samples.
Marco Bombardi
----- Original Message -----
From: "Clay Perrine" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, December 17, 2003 6:53 AM
Subject: FW: [ActiveDir] Event Log monitoring tools
We have a free resource kit style tool called EventCombMT. It will query
the event logs on selected servers for selected events. It doesn't do
active monitoring, but it will generate a file of all the specified
event id's from all the servers specified. Anyone who would like a copy
can contact me directly. I tried to post it here, but the file is too
big to send. There is a doc file that has the directions on how to use
it.
Give it a try.
Clay Perrine MCSE
Microsoft Directory Services Support Team.
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Charlie Kaiser
Sent: Wednesday, December 17, 2003 8:22 AM
To: '[EMAIL PROTECTED]'
Subject: [ActiveDir] Event Log monitoring tools
I'm wondering what people are using for event log monitoring. Looks like
our environment will be expanding to the degree that I'll need to
monitor numerous independent server farms and would like to be able to
get daily centralized reports based on logs. I know MOM and NetIQ will
do this, but 800 lb gorillas aren't really my style. ;-) Is there
anything else good out there that will do this?
Thanks.
**********************
Charlie Kaiser
MCSE, CCNA
Systems Engineer
Essex Credit / Brickwalk
510 985 0975 x5083
**********************
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
