Getting Started with Microsoft System Center Operations Manager E-Book

Getting Started with Microsoft System Center Operations Manager

Credits

About the Author

About the Reviewers

I would like to thank my beautiful wife, Asha Puthusseril and our little bundle of joy Advik Menon, for their endless motivation and support.

I would also like to thank my parents Viswanadhan and Usha, brother Akhilesh Menon, my uncle Biju and my mentor Ajish Kumar Sir, for making me like this.

Finally I would like to thank You for buying this book and making our effort worthy.

www.PacktPub.com

Did you know that Packt offers eBook versions of every book published, with PDF and ePub files available? You can upgrade to the eBook version at www.PacktPub.com and as a print book customer, you are entitled to a discount on the eBook copy. Get in touch with us at <[email protected]> for more details.

At www.PacktPub.com, you can also read a collection of free technical articles, sign up for a range of free newsletters and receive exclusive discounts and offers on Packt books and eBooks.

https://www2.packtpub.com/books/subscription/packtlib

Do you need instant solutions to your IT questions? PacktLib is Packt's online digital book library. Here, you can search, access, and read Packt's entire library of books.

Preface

Chapter 1, Introduction to System Center Operations Manager, aims to provide an overview of the System Center suite of datacenter management components, including an introduction to OpsMgr and its core features.

Chapter 2, Installing System Center Operations Manager, covers the design and deployment of your first OpsMgr management group.

Chapter 3, Exploring the Consoles, walks you through the various views and settings that can be found across the different workspaces in both the Operations console and the Web console.

Chapter 4, Deploying Agents, focuses on deploying and managing Windows agents in single or multiple management groups. This chapter also demonstrates how to deploy cross-platform agents to your UNIX/Linux computers.

Chapter 5, Working with Management Packs, includes an overview of what a management pack is, some tips on where to download them from as well as walk-through's to show you how to import, export, and manage them.

Chapter 6, Managing Network Devices, provides information about the out-of-box network monitoring capability of OpsMgr, which can use SNMP or ICMP communications to monitor your network devices.

Chapter 7, Configuring Service Models with Distributed Applications, takes an often under-utilized feature of OpsMgr and provides step-by-step information to help you create models of your IT services for maximum monitoring visibility.

Chapter 8, Alert Tuning the Easy Way, presents process-driven methods and real-world tips to ensure excessive alert noise is kept to a minimum and your alert views stay manageable.

Chapter 9, Visualizing Your IT with Dashboards, shows how to configure and populate built-in dashboard templates with the various widgets on offer as well as introducing you to some hidden dashboard treasures that will maximize the visibility of the IT services monitored within your organization.

Chapter 10, Creating Alert Subscriptions and Reports, covers the creation of alert notification channels, subscribers, and custom subscriptions. In this chapter, we also dive into the powerful reporting feature of OpsMgr to help you create and customize the type of reports that your senior-level IT managers and teams request on a regular basis.

Chapter 11, Backing Up, Maintenance and Troubleshooting, focuses on backing up and optimizing your OpsMgr environment. You will also discover how to work with Maintenance Mode, deploy update rollups, and troubleshoot common OpsMgr issues.

What you need for this book

Who this book is for

Conventions

Note

Warnings or important notes appear in a box like this.

Tip

Tips and tricks appear like this.

Reader feedback

Customer support

Although we have taken every care to ensure the accuracy of our content, mistakes do happen. If you find a mistake in one of our books—maybe a mistake in the text or the code—we would be grateful if you could report this to us. By doing so, you can save other readers from frustration and help us improve subsequent versions of this book. If you find any errata, please report them by visiting http://www.packtpub.com/submit-errata, selecting your book, clicking on the Errata Submission Form link, and entering the details of your errata. Once your errata are verified, your submission will be accepted and the errata will be uploaded to our website or added to any list of existing errata under the Errata section of that title.

To view the previously submitted errata, go to https://www.packtpub.com/books/content/support and enter the name of the book in the search field. The required information will appear under the Errata section.

Piracy of copyrighted material on the Internet is an ongoing problem across all media. At Packt, we take the protection of our copyright and licenses very seriously. If you come across any illegal copies of our works in any form on the Internet, please provide us with the location address or website name immediately so that we can pursue a remedy.

Please contact us at <[email protected]> with a link to the suspected pirated material.

We appreciate your help in protecting our authors and our ability to bring you valuable content.

If you have a problem with any aspect of this book, you can contact us at <[email protected]>, and we will do our best to address the problem.

Chapter 1. Introduction to System Center Operations Manager

System Center is a suite of enterprise cloud and datacenter management tools from Microsoft, developed and structured on the Microsoft Operations Framework (MOF) and IT Infrastructure Library (ITIL) framework. The concept behind MOF and ITIL is to deliver IT service excellence for your organization through a process-driven guidance and team structure. You can learn more about MOF by referring to http://tinyurl.com/mofintro and for ITIL you can refer to http://tinyurl.com/itilintro.

The goal of System Center is to help deliver centralized monitoring and management of your applications, virtual environments, physical environments, and cloud-based workloads.

Operations Manager is one of the most popular components of System Center and before we dive into that, let's take a look at some of the other components in the suite:

A few years back, in early 2012, Microsoft announced a major change in how they licensed and supported System Center. This new change meant that customers could no longer license an individual component from the System Center suite (there were eight components to choose from at the time); instead, the license model changed to view the whole of System Center as a single product. The thinking behind this shift wasn't to simply make more money from a higher license cost but to position System Center as a fully integrated cloud and datacenter management solution, where each of its components can be interconnected to deliver an enterprise-grade IT Service Management offering.

Introducing Operations Manager

Tip

With everything that OpsMgr can do, if you find yourself constantly troubleshooting issues in your environment or not knowing where to start looking when a problem arises, then this will be a formidable tool to add to your box of tricks.

IT as a Service explained

Figure 1.1: The Operations Console

Note

Using ITaaS you can manage your services in the same way that your end-users consume them—essentially viewing each complex IT service as a single entity with a green, amber, or red health state, similar to a traffic light status!

Operations Manager core features

Created during the initial installation of OpsMgr, a management group is a unique logical administrative unit that defines the security boundaries of your monitoring environment.

When choosing a management group name, you must ensure that the name is unique within your Active Directory forest and also understand that whatever name you choose, it's case sensitive. It's also recommended that you refrain from using any unsupported special characters in the name and stick with letters and numbers.

You can have multiple management groups running concurrently in the same domain without a problem (this is useful for pre-production and production environments) and all configuration changes and customizations that you make will be contained inside each unique group.

A SQL database that forms the central component of every Management Group, the Operational database installs with a default name of OperationsManager. It contains all your OpsMgr customizations along with configuration and monitoring data for all managed objects. A dedicated Operational database is required for every OpsMgr management group you deploy.

Data is retained in the Operational database by default for seven days - think of this as OpsMgr's short-term memory store. This retention period can be modified for different types of datasets by configuring database grooming within the Operations console.

The data warehouse is a SQL database that can be either dedicated or shared by an OpsMgr management group. This database has a default installation name of OperationsManagerDW.

All historical alerting and monitoring data is stored here and with retention period of up to four-hundred days, this can be considered OpsMgr's long-term memory store. Having the ability to retain data for such a long period means OpsMgr can use the data warehouse to generate rich reports that will help you to better understand the availability and performance of your IT services.

Installed by default onto the first management server that you deploy, the Root Management Server (RMS) Emulator exists to support backward compatibility with legacy OpsMgr management packs that specifically target the RMS role. If there are no legacy management packs that contain rules targeted at the RMS role, then essentially, the RMS Emulator is not required and all management servers are considered equal.

In early releases of OpsMgr, the RMS role was arguably the most important role within the management group and unless you deployed Failover Clustering across two servers, it was also a single-point of failure. Since OpsMgr 2012, the single-point of failure RMS role was removed and out-of-box high availability was made possible using a new feature called Resource Pools. These pools are a collection of management servers that distribute the workload and ensure that monitoring continues in the event of a management server failing.

The Management Server role is responsible for managing and communicating with agents, maintaining management group configuration, communicating with the OpsMgr SQL databases, and facilitating console connections.

After installation of this role, you will find five new Windows services installed on your server. Out of the five services, three are configured with a service start up type of Automatic and two of them are set to Disabled.

These management server services and their startup types are detailed in the following table:

The OpsMgr Reporting Server role integrates with SQL Server Reporting Services (SSRS) and gives you the ability to generate and schedule reports from an intuitive user interface inside the Operations Console. You can choose from ready-made reports that come bundled with the various management packs you deploy or you can generate your own custom reports using some of the generic templates on offer.

Good reporting enables you to visualize the monitoring data generated from your IT infrastructure and provide exactly the kind of high-level information that senior management teams request on a regular basis. You also have the option to e-mail reports on a specific schedule or simply export them into various easy-to-read formats, such as Word, Excel, PDF, CSV, and TIFF to name a few.

The primary role of a Gateway Server is to act as a go-between for monitored agents that are located in untrusted domains and networks - DMZ's are a great example of where to use this role in your environment.

When located in an untrusted domain, a Gateway Server must use certificates to authenticate with the main OpsMgr environment. It communicates with management servers over TCP port 5723 and cannot connect directly to the OpsMgr databases.

A Gateway Server also acts as a data compressor and can be used to compress monitoring traffic from agents to the management servers by up to 50% in certain scenarios.

The OpsMgr agent is used for server and client monitoring of Windows and Unix/Linux operating systems. A push installation can be initiated from management servers and gateway servers to make the deployment nice and easy. It can also be deployed manually or added into computer images and packaged as an application for deployment with a tool such as System Center Configuration Manager.

On a Windows computer, after the agent has been installed, three new windows services are created. These new services and their startup types are detailed in the following table:

The agent's job is to communicate with management and gateway servers, discover objects, execute workflows, and run diagnostic tasks on monitored computers.

If you have deployed multiple management groups, the OpsMgr agent can perform a feature called 'multi-homing' whereby it can communicate with up to four different management groups at any given time. This feature will be discussed in more detail in Chapter 4, Deploying Agents.

There are a number of consoles that you can interact with when you are working with OpsMgr. The most common one is the Operations Console, which is essentially the main console that you will use when administering OpsMgr. In Figure 1.2, you can see the Operations Console in action monitoring some Windows computers.

During installation, you can choose to deploy the Web Console, which is a lighter and scaled-down version of the Operations Console. This console will be deployed as an IIS website on whichever server you choose to run it from. Although you can't perform any administration or reporting tasks here, the Web Console is useful if you want to give your OpsMgr users read-only access to the monitored environment.

When you deploy the Web Console role with the installation wizard, you get an automatic installation of the Application Advisor and Application Diagnostics consoles - both of which are used in conjunction with the APM feature for code-level monitoring of your applications.

If you want to get any monitoring value at all from OpsMgr, then you are going to need to install some management packs. These are small files based on XML that can be imported into OpsMgr and which hold information about how to monitor a specific application or hardware product set.

Management packs can contain some or all of the following objects:

In Chapter 5, Working with Management Packs, you will learn much more about management packs and how to use them to get the most out of your OpsMgr deployment.

Another optional and very useful feature of OpsMgr is Application Performance Monitoring (APM). When configured, this gives IT Operations teams the ability to help troubleshoot problems inside applications at the code-level, similar to the world of a Developer. This synergy has become known as 'DevOps', and it's something that has gained a lot of traction in the last few years.

A real benefit of deploying APM in OpsMgr is that, not only do you get to dive deep into your .NET and Java application code; you can also see the health of the underlying infrastructure that runs those applications.

If you're going to monitor the full breadth of your IT services, then you will no doubt want to include network device monitoring in your designs. With a choice of ICMP or SNMP (v1/v2c/v3) monitoring, you can take advantage of the built-in Network Node and Vicinity dashboards to give you rich visualizations on the health of your network infrastructure. Chapter 6, Managing Network Devices, will get you up and running with this feature in no time.

Audit Collection Services (ACS) is an optional feature used to collect security event logs from monitored systems and bring them together in a central SQL database for auditing and compliance purposes. ACS uses its own SQL database (named OpsMgrAC by default), which is kept completely separate from the OperationsManager and OperationsManagerDW databases.

To enable ACS, you must deploy a management server and configure it as an ACS Collector. The ACS Collector then receives and processes the audited security event logs from targeted computers and passes that information into the OpsMgrAC database.

Specific computers running the OpsMgr agent can be targeted with ACS audit policies to enable them as an ACS Forwarder. When Windows computers are enabled as ACS Forwarders, the Microsoft Monitoring Agent Audit Forwarding service is started on those computers and configured with an 'Automatic' start up state. When this service is running, the ACS audit policies are applied and security events will be sent to the ACS Collector for auditing.

Agentless Exception Monitoring (AEM) is an optional feature that centralizes the collection of hardware, operating system, and application crash information from selected computers. If you're familiar with the old 'Dr. Watson Debugger for Windows' tool that collects data from your computer when it crashes, then AEM is a centralized version of this which feeds the crash data into OpsMgr.

Minimum installation requirements

The OpsMgr Sizing Helper tool is an interactive Excel document designed to assist you with planning and sizing your deployments. As shown in Figure 1.2, you can choose from a number of different configuration scenarios and all you need to have is a rough idea of what it is that you actually need to monitor.

This should be the go-to tool that you use prior to every OpsMgr deployment that you do. Although the information it feeds back to you is to be used purely as a guide, it goes a long way to ensure that your designs are aligned as close to best-practice recommendations as possible. You can download the tool from http://tinyurl.com/opsmgrsizing.

All OpsMgr features are fully supported by Microsoft to run in a virtual environment that meets the minimum requirements outlined in the OpsMgr Sizing Helper tool. Purely for performance reasons, Microsoft recommends running the OpsMgr SQL databases on physical disks rather than on virtual disks but this is only a recommendation and there is no issue if you want to deploy the databases in a virtual environment, assuming of course, that you have configured the underlying storage where your virtual disks are located according to best practice recommendations for SQL workloads.

You also have the option of running some or your entire OpsMgr environment on Microsoft Azure for the following three recommended scenarios:

If you're running OpsMgr 2012 R2, then the following versions of SQL Server are supported to host the databases:

If you're running OpsMgr 2016, then your SQL choice is slightly more limited:

The following operating systems are supported to run OpsMgr 2012 R2:

OpsMgr 2016 can be deployed on these operating systems:

If you deploy the OpsMgr 2012 R2 Web Console role, the following Internet Explorer and Silverlight versions are supported:

The OpsMgr 2016 Web Console has the following requirements:

In the following table, we can see the TCP port numbers and outgoing directions that the various OpsMgr features require. This information can be useful when configuring communication across firewalls in your organization.

Although the majority of firewall ports required for OpsMgr are TCP-based, the following table lists the UDP port numbers and the direction they should be enabled for:

If you need to deploy an OpsMgr 2012 R2 agent to your Windows estate for monitoring, then the following is a list of supported server and client operating systems:

For OpsMgr 2016 agents, the following Windows server and client operating systems are supported:

A wide range of cross-platform operating systems are supported and the following list details the versions you can monitor with both OpsMgr 2012 R2 and OpsMgr 2016:

Summary

Chapter 2. Installing System Center Operations Manager

Before you dive in and begin installing OpsMgr, its best practice to take a step back and think about how you will design the environment. A good design takes into account the overall monitoring requirements of the business, the physical and logical locations of the infrastructure to be monitored and any existing monitoring applications that are currently in place.

Involving members of each business unit/department in the organization is paramount to delivering a monitoring solution that works for everybody and can deliver real benefits and time-saving back to the business.

Here's some advice to get you started with your initial OpsMgr designs: