Previous Page
Next Page

Planning

Planning is important to the proper installation of your MOM environment. Planning for the installation of MOM includes knowing or finding out:

  • Infrastructure prerequisites.

  • Users of MOM and their needs.

  • Operating systems need to be monitored.

  • Applications need to be monitored.

  • Service Level Agreements (SLAs).

  • Network structure.

  • Redundancy requirements.

  • Disaster recovery needs.

The MOM 2005 Deployment Planning Guide is a great resource provided by Microsoft at http://www.microsoft.com/mom/techinfo/planning/default.mspx along with many other planning documents for MOM 2005.

In simple terms, planning is centered on determining the capacity and redundancy requirements of the organization.

Infrastructure Prerequisites

As with many applications, there are certain prerequisites for installation of MOM 2005. Not only are there certain server requirements, but there are network infrastructure requirements as well. MOM 2005 does have a process in which it checks for all prerequisites, but it is better to meet them all before running the installation and having to abort the installation to fix these problems.

Security

Installation requires creating two different service accounts for MOM 2005.

  • Management Server Action Account: This service account has several special requirements based on the tasks that it performs. For example, this service account is used to:

    • Install agents on monitored computers

    • Run tasks on agentless monitored computers

    • Retrieve and gather data from agentless monitored computers

    • Access event logs on monitored computers

    • Retrieve and gather data from the Management Server

  • Data Access Server (DAS) Account: This service account is used to access the MOM 2005 Database. In order to provide proper database access, it needs:

    • SQL server db_owner role for the MOM 2005 Database

    • Permit server access login authority for the SQL server

With these requirements in mind, many organizations will create a domain admin equivalent service account for the Management Server Action Account and will create a specific domain account with the proper SQL permissions for the DAS account.

Another account of note is the Agent Action Account which is used to collect data from agent-managed computers and to run actions on agent-managed computers. This account, however, is not needed during installation of the MOM 2005 Database or the MOM 2005 Management Server.

Windows Server

MOM 2005 should be installed on Windows Server 2003 whenever possible. However, MOM 2005 does provide support for previous versions of Windows as follows:

  • Windows NT 4.0 with Service Pack 6a: MOM 2005 can monitor these computers as agentless managed computers. In order to manage Windows NT 4.0, WMI 1.5 needs to be installed on each managed computer. MOM 2005 reports can also be viewed from Windows NT 4.0 computers using browsers that support HTML 3.2 and HTML 4.0.

  • Windows 2000 Server, Advanced Server, and Datacenter Server with Service Pack 4 or above:

    Can be used for the Management Server, MOM database, MOM Administrator Console and Operator Console, and MOM Reporting Server roles. Windows 2000 Service Pack 4 clients can be managed as either agent-managed or agentless computers. Windows 2000 Service Pack 4 clients can also be used to view MOM reports.

  • Windows Server 2003 Standard Edition, Enterprise Edition, and Datacenter Edition: Can be used for all roles in a MOM 2005 environment. All Windows Server 2003 computers can be managed as using agents or as agentless clients. All Windows Server 2003 computers can be used to view reports.

  • Windows Server 2003 64-bit editions: Cannot be used for any of the MOM 2005 roles except to host the MOM database. The 64-bit edition of SQL Server is required and the MOMCreateDB.exe tool from the Support Tools folder is required to install the database. The Support Tools folder contains the MOMCreateDB.exe for both the 32-bit and 64-bit database versions. The Windows Server 2003 64-bit Editions can be managed using 64-bit versions of the MOM agent or they can be managed as agentless computers. Windows Server 2003 64-bit Edition servers can also be used to view MOM reports.

While it is possible to install MOM 2005 components on a domain controller, it is not recommended because of the following restrictions:

  • Product Connectors have not been fully tested on domain controllers and might not function properly.

  • There can be only one Management Server in a Management Group if the Management Server is installed on a domain controller.

  • Both the MOM database and the MOM reporting database have to be on the same server.

In general, it is a bad idea to install any application on a domain controller. The limitations caused by having MOM 2005 installed on a domain controller really underscore the potential problems beyond the security concerns. Many security experts will strongly discourage installing applications on a domain controller because additional applications increase the attack profile of the server and it is hard enough to properly secure a domain controller.

SQL Server

MOM 2005 needs a place to store all of the data that it receives from the agent-managed and agentless computers on the network. The data can be stored using either SQL Server 2000 with Service Pack 3a and higher or Microsoft Data Engine (MSDE). Using MSDE is not recommended because it has a limit of only 2GB of data, it includes a query governor that can hinder performance, and it also is unable to support the System Center Data Warehouse. As of this writing, MOM 2005 is not officially supported on SQL Server 2005.

One of the most important requirements for a successful implementation of MOM 2005 is the ability to store the data required by the organization. In some cases, a smaller amount of data is needed than in other situations. With MSDE's limitations, it is vital to have SQL 2000 SP3a or higher to store all of the data that will be collected by MOM 2005 and to provide the platform for MOM 2005 reporting.

The MOM 2005 Database is extremely active as it is constantly adding new performance and event information and is using queries to check for potential triggers. SQL Server 2000 best practices dictate putting multiple spindles in the server for performance and database protection. According to best practices, the database and the transaction logs should be on separate drives. Because transaction logs are a potential bottleneck for SQL performance, it is important that transaction logs be placed on fast drives. With the transaction logs separated, it is possible to restore a SQL database to its most current state. The topic of SQL Server 2000 performance tuning is best left to a complete chapter or two in a SQL Server 2000 book, so it will not be covered in depth here. Administrators should follow SQL best practices and involve a SQL database administrator to provide recommendations.

A potential configuration, used to improve throughput to the database, is to have a separate and dedicated network connection directly attached from the MOM 2005 server to the SQL Server 2000 server.

Figure 3-1 shows a separate network connection between the MOM 2005 server and the SQL 2000 server. Using this configuration, which will take some manipulation on the side of the MOM 2005 server so that is uses just the dedicated network, will increase the bandwidth that is available between the MOM 2005 and SQL 2000 servers. This kind of configuration can improve performance in situations where the standard network is congested or where it uses slower technologies. For example, the standard server network might be using a switched 10/100 megabit network while the dedicated MOM/SQL network can be gigabit. We don't recommend that you use this configuration unless the environment is experiencing performance issues caused by poor network connectivity between the MOM 2005 server and the MOM database hosted on the SQL 2000 server.

Image from book
Figure 3-1

Microsoft recommends a dedicated SQL server for the MOM 2005 Database installation. Depending on the size of the organization and the number of managed computers, a dedicated SQL server will be required to meet performance needs. Many organizations, however, have invested a great deal into clustered SQL servers with multiple processors and large amounts of memory that are attached to very fast storage area networks. In many cases, a dedicated SQL server is not necessary to meet performance requirements.

There are a few other requirements for the SQL Server 2000 server that is hosting the MOM 2005 database. The following are needed:

  • The SQLSERVERAGENT must be set to Automatic.

  • SQL Reporting Service is needed for Reporting. Reporting is not a requirement for a MOM 2005 installation; however, if Reporting is required by the business, then SQL Reporting Services is required.

  • IIS must be installed for SQL Reporting Service if MOM 2005 Reporting is going to be on the same server.

  • ASP.NET and COM+ are required to support the reporting content.

MOM Users

Users often affect how an application is installed. MOM has several types of users and the location of these individuals can affect the design and deployment of MOM 2005. The more common MOM 2005 users include:

  • Network Operations Center (NOC) users that use MOM 2005 to monitor the environment and will receive alerts.

  • Application administrators such as Exchange and SQL administrators who need to be notified when drives are filling up or when applications are consuming too many resources.

  • SLA administrators who will need to generate reports to verify that all SLAs are being met and who will work with MOM 2005 administrators to modify current management packs and tune settings to avoid false positive results in monitoring.

  • Managers who need to generate reports for budgeting reasons and to identify current resources in use on a daily basis and for peak times.

  • MOM administrators who may use the MOM Web Console may affect the need for an additional MOM server in the environment.

  • Other monitoring administrators who use third-party tools may require the implementation of the MOM Management Connector Framework.

There are many others users of MOM services; however, these are some of the key ones that can affect the location of different components of the MOM infrastructure. In particular, if all users of reporting functionality reside in one physical location, it might make sense to deploy the MOM 2005 reporting components in that physical location. Depending on the number and complexity of reports, it may take a server with significant resources.

Business units and the users within the different units can affect the design of the MOM 2005 environment. In organizations with decentralized information technology teams and decentralized authority, it is possible to have completely independent MOM 2005 implementations.

Monitored Operating Systems

The way that MOM is deployed is affected by the operating systems that will be monitored and managed. There is no agent for Windows NT 4.0 servers, as previously noted, so agentless monitoring is required for these older legacy systems. If MOM 2005 is going to be used to monitor and manage individual workstations, it will require more storage and possibly additional MOM servers. Agentless monitoring requires more resources on the MOM 2005 Management Server because it has to do more work than it would for an agent-managed computer.

There are significant limitations when it comes to agentless managed computers. Per the MOM 2005 Deployment Planning Guide, you can have only:

  • Ten agentless managed computers per MOM Management Server

  • Sixty agentless managed computers per Management Group

Limiting the scope of management to only critical systems that are running Windows 2000 Server or Windows Server 2003 will allow for a smaller MOM 2005 deployment and will limit performance concerns for most organizations. The larger and more complex the environment, the more it will cost to implement and to maintain over time.

Monitored Applications

Microsoft and many third-party developers have created an extremely long list of management packs that provide a large set of pre-built and developed rules. Many organizations have server farms running vital applications. Depending on the size of the farm, it may require its own Management Server. In many cases, organizations have dedicated teams for critical applications so it would follow that dedicated teams might have dedicated MOM 2005 environments. At the very least, depending on the size of the farm and the importance of the applications, a farm or large number of application servers may require their own SQL server as well as their own Management Server. Applications can generate a large amount of data, and many applications require close monitoring based on their high levels of utilization and importance to the organization.

Service Level Agreements

Some organizations depend heavily on timely reporting of service levels for a variety of different applications and resources in the organization. In many cases, internal and external payments of penalties and bonuses are dependent on meeting these service levels. The Service Level Agreements (SLAs) may require that you maintain information for long periods, which will require your maintaining database information over a greater length of time and maintaining a wider breadth of information than other computers. The amount of data, the type of data, and the reporting requirements can all affect the number of servers and the performance and capacity of the MOM 2005 and SQL servers used in the environment.

Network Structure

Where are the managed computers? How much bandwidth is available between the Management Server and the managed computers? These are two vital questions when it comes to planning the number and placement of the MOM 2005 Database and the MOM 2005 Management Servers in the organization.

Location of managed computers is important. In larger organizations, the majority of servers are generally installed and managed in a centralized datacenter with a few remote servers located close to users such as domain controllers and file and print servers. Placing a Management Server in the datacenter with the majority of managed servers seems to be a no-brainer. The question is often the capacity of the Management Server and the administrative model. In a large datacenter, multiple Management Servers may be needed for capacity, and multiple Management Servers may be needed based on applications and who administers the applications.

If there are large pipes between physical locations, it might make sense to have a single Management Server or at least a smaller number of Management Servers. If the bandwidth is limited, however, it would probably make more sense to have multiple Management Servers with one located in each network within the organization. Remote Management Servers can be configured to forward information to a centralized Management Server. If MOM is being used to monitor and manage desktops, it might also be a good idea to consider deploying a MOM 2005 Management Server where there are high concentrations of workstations.

Many organizations have firewalls between their different locations. Firewalls will most likely not limit the ability to install a Management Server or other MOM 2005 components because MOM 2005 communication ports can be opened. The main issue with firewalls is for Remote Procedure Calls (RPCs) used by a Management Server to communicate with agentless computers. RPCs will generally not work through firewalls and this means that any agentless managed computers will require that their Management Server be located on the same network.

In almost all situations, the largest concern is placement and number of back-end SQL servers to support the planned deployment of Management Servers. Connectivity between the Management Servers and the SQL servers is very important.

Redundancy Requirements

MOM 2005 can be implemented with redundancy in mind. In particular, the SQL Server instance can be clustered to provide high availability for the MOM 2005 Database role. The Management Server role can be made redundant by installing two ore more Management Servers in the same Management Group and deploying agents so they can report to all Management Servers in the group. Redundancy can also be built into the MOM 2005 environment in that agents on managed computers can be configured to use a secondary Management Server in the event of a failure of a single Management Server. While this environment is more complex, it is important for many organizations that monitoring be available despite the failure of a MOM 2005 component.

Between SQL clustering, having multiple Management Servers in the same Management Group, and configuring agent-managed computers to failover to a secondary Management Server in the event the primary Management Server fails, MOM 2005 can be configured with redundancy in mind even though it does not support server clustering using Microsoft clustering technologies.

MOM Installation Steps

Now that we've reviewed the basics of planning, it is time to actually install MOM 2005. In this example, KOSH is the name of the SQL Server 2000 server and Bester is the name of the Windows Server 2003 server where MOM 2005 is going to be installed. The example installation in this chapter covers deploying MOM 2005 across multiple servers. It is possible to install all of the components of MOM 2005 on a single server. According to the MOM 2005 Deployment Guide, a single server implementation is intended for less than 200 managed computers.

Microsoft recommends that deployment across multiple servers follow a phased approach as follows:

  1. Install the MOM 2005 Database.

  2. Install the first MOM 2005 Management Server.

  3. Install any additional MOM 2005 Management Servers.

  4. Discover all computers and deploy agents for the first Management Server.

  5. Discover all computers and deploy agents for any additional Management Servers.

  6. Install System Center Reporting (this is entirely optional, and is not covered in this chapter).

  7. Import management packs one at a time (work on settings for each management pack until it is configured properly before installing another management pack).

Inserting the CD will automatically bring up the Setup screen for MOM 2005. One of the extremely helpful utilities that come in the setup is a tool to check and verify that all prerequisites have been met before attempting an installation, as shown in Figure 3-2.

Image from book
Figure 3-2

Selecting the Check Prerequisites link brings up a window to select the components that should be checked. It makes sense to verify that the MOM 2005 Database prerequisites are met first since the Management Server must be able to communicate with the Database for MOM 2005 to be functional. Insert the MOM 2005 CD in the SQL server or run the setup utility from the SQL server remotely to verify that it is properly configured. Select the Microsoft Operations Manager 2005 components radio button and then select the MOM 2005 Database check box and click the Check button, as in Figure 3-3. If the SQL server is properly installed and available, there will not be any failures or warnings in the results page and all requirements will be properly checked with green checkmarks. If MOM 2005 Reporting is also going to be installed in the MOM 2005 environment, the proper prerequisites can also be checked by selecting the MOM 2005 Reporting radio button, checking the Remote SQL Server Reporting Services Server check box, entering the Server Name, and clicking Check.

Image from book
Figure 3-3
Important 

There is a known issue with the Check Prerequisites tool. If the SQL Server 2000 server is currently running Service Pack 4, the tool reports a failure. A current workaround is to modify the registry on the SQL server to make the tool believe that Service Pack 3a is installed. Service Pack 4 is supposed to be supported with MOM 2005 SP1; however, many organizations have already upgraded their SQL environments to Service Pack 4. The workaround is to modify the CSDVersion registry entry found at HKLM\SOFTWARE\Microsoft\MSSQLServer\MSSQLServer\CurrentVersion.

Service Pack 4 will show 8.00.2039. If this entry is changed to 8.00.761, then the MOM 2005 Database will install without any problems. This key needs to be changed back after MOM 2005 is properly installed.

The setup utility should also be run on the potential Management Server. In this case, the Microsoft Operations Manager 2005 components radio button should be enabled and the MOM 2005 Management Server check box should be checked along with any of the additional subcomponents that will be installed such as the MOM 2005 Web Console.

The Check Prerequisites option should be run on all servers that will be a part of the MOM 2005 environment. It is important, however, that the prerequisites be checked only for the options that will be installed on the server where it is run. For example, checking for the MOM 2005 Database prerequisites on a Management Server will cause a failure because the tool will be checking for the installation of SQL Server 2000.

Installation of the MOM 2005 Database

Once you've checked the potential MOM 2005 Management Server and Database components, you can perform the installation. MOM 2005 Database best practices include:

  • Use the MOM 2005 Performance and Sizing guide to help determine the database size.

  • Use a dedicated SQL server for the MOM 2005 Database.

  • Put the database and log files on separate physical drives.

  • Place the paging file on a separate physical drive away from the operating system, the database, and the log files.

Follow these steps to perform the installation:

  1. In the initial setup window, click the Install Microsoft Operations Manager 2005 link.

  2. Click Next on the Welcome to the Microsoft Operations Manager 2005 Setup Wizard.

  3. Accept the license agreement and click Next.

  4. Enter the User Name, Organization Name, and the CD Key, and click Next.

  5. Select the Custom radio button and click Next.

    Note 

    The Typical installation option installs the Database, Management Server, and both consoles. The Custom installation option is needed if the MOM Connector Framework or the MOM Product Connector is needed and also if the Database and Management Server roles are to be separated and installed on different servers.

  6. Unselect the MOM 2005 Management Server and the MOM 2005 User Interfaces components (see Figure 3-4 for the resulting view) and click Next.

    Image from book
    Figure 3-4

  7. Click Next on the Prerequisite Check Passed window.

  8. Select the SQL Server database instance using the drop-down box and click Next.

  9. Select the Advanced button on the Database and Log File Options window, as in Figure 3-5.

    Image from book
    Figure 3-5

  10. In the Database Files Location window, use the two Change buttons to move the database and log files to the best locations for performance and redundancy and then click OK.

    Note 

    Microsoft does not recommend configuring the database (once it is installed) to Automatically grow file because the maximum OnePoint database size supported is 30GB. The optimum size for performance is 15GB.

  11. Select the Database size per planning or select the default and grow the database as needed in the future and click Next.

  12. Assign the Management Group Name (this name cannot be changed without performing a complete reinstallation of MOM 2005) and click Next.

    Note 

    We suggest that you establish a naming convention prior to installation. For example, the names may be based on geographic areas or business divisions.

  13. Enter the Data Access Server Account information, which includes the User Account, Password, and Domain or local computer information, and click Next.

  14. Check the Enable error reporting check box or leave it unchecked and click Next.

    Note 

    If enabling error reporting, it can be sent automatically or it can be queued up for approval before sending the information. In both cases the error reports are encrypted and do not contain any potentially sensitive organization information.

  15. Select the appropriate radio button for the Active Directory Configuration window and click Next.

    Note 

    Selecting Yes for this window allows use of the same security credentials for all agents and MOM 2005 Management Servers in the environment. Selecting No for this window means that multiple security credentials will be required to deploy, update, and manage deployed agents and MOM 2005 Management Servers; however, it does allow flexibility in highly secure environments where multiple non-trusting domains are in use and where standalone servers are deployed.

  16. Click Install to install the MOM 2005 Database to the SQL Server 2000 server.

  17. Click Finish to complete the installation of the MOM 2005 Database.

  18. Using Enterprise Manager on the SQL Server 2000 server, set the database authentication to Windows only if possible.

  19. Using Enterprise Manager, set the SQL Server service account to run as Local System and verify that SQL Server is configured to use TCP/IP for client connections.

    Note 

    Involve the Database Administration team, if possible, in the configuration and tuning of the database. It may not be possible to set the authentication to Windows only because in many environments the SQL server will support other databases, which may have other requirements including the need for SQL Server authentication. It is also possible that SQL cannot be run under Local System if other databases have different needs.

Installation of the MOM 2005 Management Server

Follow these steps to install the MOM 2005 Management Server:

  1. Log on to the server using an account with administrative credentials that also has the db_owner permission to the OnePoint database created earlier and "DBO" access to both the master and the msdb databases on the SQL server.

  2. After starting the setup program, check the prerequisites on the server that will host the MOM 2005 Management Server role. After all the requirements have been checked, it is time to start the installation.

  3. In the initial setup window, click the Install Microsoft Operations Manager 2005 link.

  4. Click Next on the Welcome to the Microsoft Operations Manager 2005 Setup Wizard.

  5. Accept the license agreement and click Next.

  6. Enter the User Name, Organization Name, the CD Key, and click Next.

  7. Select the Custom radio button and click Next.

    Note 

    The Typical installation option installs the Database, Management Server, and both consoles. The Custom installation option is needed if the MOM Connector Framework or the MOM Product Connector is needed and also if the Database and Management Server roles are to be separated and installed on different servers. In this case, the Database has already been installed, and this process will install the Management Server component on a different server. Microsoft recommends installing the Web Console on a separate server; however, it can be installed on the Management Server at this time.

  8. Unselect the MOM 2005 Database and verify that the MOM 2005 Management Server option is selected, as in Figure 3-6, and click Next.

    Image from book
    Figure 3-6

  9. Click Next on the Prerequisite Check Passed window.

  10. Select the MOM Database Server Instance and the port number and click Next.

    Note 

    Alternative port numbers are often used as security measures. Many virus attacks are focused on known ports, such as the default SQL port of 1433. The port number can be changed on the SQL server using Enterprise Manager.

  11. Enter the Management Server Action Account information and click Next.

    Note 

    If the account is a domain administrator equivalent account, a warning will be provided.

  12. Enter the Data Access Server Account information and click Next.

  13. Click Install to copy all of the files and to allow the MOM 2005 installation process to configure the server.

  14. Click Finish to complete the installation of the MOM 2005 Management Server.

Installation of additional Management Servers can be done using these same steps. All MOM 2005 Management Servers that are in the same Management Group can be administered using the MOM Administrator Console on any of the Management Servers in the Management Group.

Note 

Knowledge Base article 889187 reports a problem where MOM 2005 does not function properly if the domain NetBIOS name contains a period in it, as in HQ.CORP. This knowledge base article states that a hot fix is available.

Installation of the MOM 2005 Administrator and Operator Consoles

The MOM 2005 Administrator and Operator Consoles were installed on the Management Server in the previous section. The problem with installing the consoles on the Management Server is that administrators have to use the Management Server for day-to-day administration. It is not a good idea to use tools directly on a server. Most systems administrators are not going to want to let MOM administrators have the ability to use Terminal Services to directly connect to the MOM 2005 Management Server for administration, so it is important to have the ability to install the consoles on MOM 2005 administrators' desktops. Installation of the consoles requires .NET Framework v1.1. To install the MOM 2005 Administrator and Operator Consoles:

  1. Log onto the server using an account with local administrative credentials.

  2. After starting the setup program, check the prerequisites on the server that will host the MOM 2005 Management Server role. After all the requirements have been checked, it is time to start the installation.

  3. In the initial setup window, click the Install Microsoft Operations Manager 2005 link.

  4. Click Next on the Welcome to the Microsoft Operations Manager 2005 Setup Wizard.

  5. Accept the license agreement and click Next.

  6. Enter the User Name, Organization Name, and the CD Key, and click Next.

  7. Select the Custom radio button and click Next.

  8. Clear the MOM 2005 Database and the MOM 2005 Management Server options and verify that the MOM 2005 User Interfaces option is enabled, as in Figure 3-7, and click Next.

    Image from book
    Figure 3-7

  9. After the prerequisites have been verified, click Next.

  10. Enter the name of the Management Server (or the one that you want to initially connect to if there are multiple Management Servers) and click Next.

  11. Click Install to copy all of the files and to allow the MOM 2005 installation process to configure the consoles on the computer.

  12. Click Finish to complete the installation of the MOM 2005 Management Server.

Discovering Computers and Deploying Agents

Up to this point, the MOM 2005 Database has been installed along with the MOM 2005 Management Server and the consoles. With the basic infrastructure installed, the next step is to install agents on all computers that should be managed. Keep in mind that in most organizations, not every single computer is monitored and managed by MOM 2005 because of resource constraints. The resource constraints can be the MOM 2005 environment capacity, network limitations, and administrator limitations.

MOM 2005 has a wonderful built-in capability to search the network and find all computers that are available. Administrators can then identify those that should be monitored and managed by MOM 2005, and then administrators can have MOM 2005 deploy the agents.

One of the features that has been discussed already is the ability to have agent-managed computers configured so that they report to specific Management Servers and have the ability to failover to a secondary Management Server in the event their primary Management Server is unavailable, as displayed in Figure 3-8. For example, if an organization has two Management Servers, half of the managed computers can be configured to use one Management Server as their primary server and the other half can be configured to use the other Management Server as their primary server. Each managed computer can then use the other Management Server as a secondary server. See the section "Configuring Multihomed Agents" later in this chapter for more information.

Image from book
Figure 3-8
Note 

Prior to deploying agents to computers, we recommend that all event logs are configured to overwrite events as needed and that the logs be increased to 25MB. If event logging stops, MOM 2005 cannot pick up the latest events. If security logs fill up, the managed server can lock up and fail.
Discovering Computers

Once the Management Servers are installed, the next step is to configure discovery rules so MOM 2005 can find the computers to be managed. Computer Discovery rules can be as simple as specifying a computer name or creating search criteria. Using custom search information allows for greater flexibility and for separation of computers among multiple Management Servers.

It is very important that similar rules are not created on multiple Management Servers in the same Management Group. If a computer can be discovered by multiple Management Servers, it will automatically change primary servers each time a Management Server does its scheduled discovery. For example, if two Management Servers both had discovery rules configured to find domain controllers, the first Management Server to run its automatic discovery would deploy its agent, and then the second Management Server would deploy its agent as well when it runs its scheduled discovery.

To create a Computer Discovery Rule, use the following steps:

  1. On a computer with the MOM 2005 Administrator Console, open the Administrator Console, expand the Administration folder, and expand the Computers folder, as shown in Figure 3-9.

    Image from book
    Figure 3-9

  2. Right-click on Computer Discovery Rules and select Create Computer Discovery Rule, as in Figure 3-10.

    Image from book
    Figure 3-10

    Note 

    Default Computer Discovery Rules exist to install agents on existing Management Servers. Additional rules will be listed below the default rules after they are created. The default rules for Management Servers cannot be deleted.

  3. Use the drop-down box to select the Management Server where this rule will be used.

  4. Use the drop-down box to select the Rule type of Include or Exclude.

  5. Manually type in the Domain name information either using the NetBIOS domain name or using the fully qualified domain name.

  6. In the Computer name, select the matching option and the characters of the match.

    Note 

    Using the Computer name part of the rule allows organizations with naming standards to implement those standards as part of the search criteria. For example, if all web servers are named with the same prefix, that prefix string can be used to discover those particular computers only. MOM 2005 supports only the use of English characters for computer names.

  7. Use the drop-down box to select the Computer type from Servers, Clients, or Servers and Clients.

    Note 

    Specifying Servers or Clients causes discovery to take longer as the Management Server has to contact each individual computer and check its operating system and its role.

  8. Use the drop-down box to set the Initial Management Mode from the options of Agent-managed, Agentless managed, and Unmanaged.

  9. Use the Apply query criteria to domain controllers option.

Figure 3-11 is an example of the discovery of all servers in the domain and configuring them to use the Management Server named Bester. Using wildcards generates a warning that the rule may discover all computers or a very large number of computers. In smaller organizations, it would not be a problem. Larger organizations may put an extremely heavy load on the Management Server, especially if it is set to automatically deploy agents for all discovered computers set to become Agent-managed.

Image from book
Figure 3-11

After installing a new Management Server and configuring the Computer Discovery Rules, the discovery will not happen until the scheduled time. Discovery can be forced to take place immediately for a single Management Server or for all Management Servers. To manually force computer discovery for a single Management Server, use the following steps:

  1. Open the MOM 2005 Administrator Console, expand the Administration folder, expand the Computers folder, and click on Management Servers.

  2. In the right-hand pane, right-click the individual Management Server and select Run Computer Discovery Now.

To manually force the computer discovery for all Management Servers, use the following steps:

  1. Open the MOM 2005 Administrator Console, expand the Administration folder, and expand the Computers folder.

  2. Right-click Management Servers and select Run Computer Discovery Now.

A manual discovery should be run during off hours to identify all new computers for management.

Deploying Agents

After discovery of all computers to be managed, it is time to deploy agents to those computers unless they are set to be automatically installed. By default, all discovered computers are put into the Pending Actions folder, as in Figure 3-12.

Image from book
Figure 3-12
Manually Deploy Agents on Newly Discovered Computers

To manually deploy the agents, use the following steps:

  1. Open the MOM 2005 Administrator Console, expand the Administration folder, expand the Computers folder, and select the Pending Actions folder.

  2. In the Pending Actions folder, select the individual computer or multiple computers.

  3. Right-click the computer(s), select All Tasks, and then select Install Agent Now.

    Note 

    For a large number of computers, this can take a considerable amount of bandwidth and can also affect the performance of these computers during the installation. Manual installation should be done during off-peak hours whenever possible.

  4. Click Next in the Welcome to the Install Agent Wizard window.

  5. Verify the Management Server Action Account radio button is selected in the Agent Installation Permissions window and click Next.

    Note 

    An alternate account can be provided by using the Other radio button and entering the account information in this window.

  6. Verify the Local System radio button is selected in the Agent Action Account window and click Next.

    Note 

    Again, an alternate account can be provided by using the Other radio button and entering the account information in this window.

  7. Verify the correct path is used for the Agent Installation Directory and click Next.

  8. Click Finish to complete the agent installation.

If the Show task progress check box is enabled, installation progress can be monitored and completion verified.

The need to manually fire off the deployment of agents to managed computers can be avoided by setting either the Management Server or all Management Servers to automatically deploy agents. Setting MOM 2005 for automatic agent installation does not cause the Install Agent Wizard to be used. For automatic installation, the Management Server Action Account is always used to install the agent, and the Local System account is always used for the Agent Action Account.

Manually Deploy Agents on Unmanaged Computers

Previously discovered computers that were not installed with agents can be installed at a later date. The management mode selected at discovery can be changed using this process. This process can also be used for computers that failed during the initial agent installation process. Computers that were previously discovered but not installed with agents are contained in the Unmanaged Computers folder. To install MOM 2005 agents on unmanaged computers, use the following steps:

  1. Open the MOM 2005 Administrator Console, expand the Administration folder, expand the Computers folder, and select the Unmanaged Computers folder.

  2. Select one or multiple computers from the right-hand pane and right-click to bring up the context menu.

  3. Select Install Agent from the context menu.

  4. Click Next in the Welcome to the Install Agent Wizard window.

  5. Verify the Management Server Action Account radio button is selected in the Agent Installation Permissions window and click Next.

    Note 

    An alternate account can be provided by using the Other radio button and entering the account information in this window.

  6. Verify the Local System radio button is selected in the Agent Action Account window and click Next.

    Note 

    Again, an alternate account can be provided by using the Other radio button and entering the account information in this window.

  7. Verify the correct path is used for the Agent Installation Directory and click Next.

  8. Click Finish to complete the agent installation.

Administrators do not have to run a discovery for MOM 2005 to install agents in this case. If the Show task progress check box is enabled, installation progress can be monitored and completion verified.

Manually Installing Agents on Remote Computers

In some cases, MOM 2005 cannot be used to deploy agents or administrators have chosen to not let MOM 2005 deploy the agents because of bandwidth issues or because the computer is behind a firewall and is highly secured. In these cases, it is still possible to install agents on the computer. In order to perform a manual agent install using the MOM 2005 media, the computer should not be in the Unmanaged Computers folder. If the computer is in the Unmanaged Computers folder, it can be deleted by right-clicking it and selecting Delete from the context menu. After the computer is deleted from the Unmanaged Computers folder, right-click the Management Packs folder and select Commit Configuration Change. To install the MOM 2005 agents from media, load or connect the media to the computer and follow these steps:

  1. Run setup.exe and select the Manual Agent Install tab, as shown in Figure 3-13.

    Image from book
    Figure 3-13

  2. Click the Install Microsoft Operations Manager 2005 Agent link.

  3. Click Next in the Welcome to the Microsoft Operations Manager 2004 setup wizard.

  4. Click Next to verify the installation folder in the Destination Folder window.

  5. Enter the Management Group Name, Management Server, and Management Server Port information; select the radio button for Agent Control Level; and click Next.

    Note 

    The default value for the Agent Control Level is set to None, which indicates that the MOM Management Servers do not have access to configure, uninstall, or update the agent. Typically, if an administrator is performing this type of installation it is because the Management Server is not able to install the agent so it will also be unable to configure it, uninstall it, or upgrade it.

  6. Select the MOM 2005 Agent Action Account for this computer or use the default Local System option and click Next.

  7. Select the Active Directory Configuration option radio button and click Next.

  8. Verify the default value of Yes, I have Active Director and my Management Server is in a trusted domain (Recommended), and click Next.

    Note 

    The default value should be selected if the computer is a member of the domain or a trusted domain of the Management Server.

  9. Verify the options selected and click Install in the Ready to Install window.

  10. Click Finish to complete the installation.

MOM 2005, by default, rejects manually installed agents, as described in the preceding process, as a security measure. If manually installed agents are allowed to be installed and used, it is possible to put a computer into the MOM 2005 environment and send bad data to the Management Servers in the environment. A manually installed agent can be approved using these steps:

  1. Open the MOM 2005 Administrator Console, expand the Administration folder, expand the Computers folder, and click on the Pending Actions folder.

  2. Right-click the computer name that you want to approve and select the Approve Manual Agent Installation Now and click Yes.

Configuring Automatic Agent Installation Options

MOM 2005, by default, is configured to not install, uninstall, or upgrade agents on discovered computers. In the default mode, all discovered computers are put into the Pending Actions folder and must be manually approved. For large organizations, it can become a very tedious and time-consuming task to keep manually approving the deployment of agents. To change the default behavior on all Management Servers, follow these steps:

  1. On a computer with the MOM 2005 Administrator Console, open the Administrator Console, expand the Administration folder, and then click Global Settings.

  2. In the right-hand pane, double-click Management Servers.

  3. Click the Automatic Management tab.

  4. Select the radio button for Automatically install, uninstall, and upgrade agents and automatically start and stop agentless management. Click OK or Apply to set the changes.

Leaving the default setting is appropriate if the organization wants to better control the deployment of agents. In some situations, however, configuring a single server to override the default behavior is the best thing to do. For example, if a Management Server is used to monitor and manage a web server farm, an organization might decide that it is best to deploy the agents right away for those web servers as it discovers them. To override the default behavior for a single server without affecting the default behavior of others, follow these steps:

  1. On a computer with the MOM 2005 Administrator Console, open the Administrator Console, expand the Administration folder, expand the Computers folder, and then click on Management Servers.

  2. In the right-hand pane, double-click the Management Server to override.

  3. Click the Automatic Management tab.

  4. Clear the Use global settings check box.

  5. Select the radio button for Automatically install, uninstall, and upgrade agents and automatically start and stop agentless management. Click OK or Apply to set the changes.

Determining which automatic agent deployment setting to use should be part of the planning process for the MOM 2005 deployment for an organization.

Use the Install/Uninstall Agent Wizard

As with almost all Microsoft operating systems and applications, there are multiple ways to achieve the same result. Another quick and easy method of installing agents on computers on the network is to use the Install/Uninstall Agents Wizard. In order to access this wizard and install agents, follow these steps:

  1. On a computer with the MOM 2005 Administrator Console, open the Administrator Console, expand the Administration folder, and expand the Computers folder.

  2. Click the Action menu item on the top menu and select Install/Uninstall Agents Wizard.

  3. In the Install/Uninstall Agents Wizard welcome screen, click Next.

  4. In the Install or Uninstall Agents window, select the Install Agents radio button and click Next.

  5. In the Method for Discovering Computers and Installing Agents window, select the Browse for or type in specific computer names radio button.

    Important 

    The other option is to select the Search criteria radio button. Many cases call for using the Search criteria option because it is more flexible and powerful for identifying the appropriate computers for the agent installation process when there are a large number of computers. In order to use the Search criteria option, you must create new Computer Discovery Rules. All rules using this wizard are Include rules, and all rules will install the management mode as Agent-managed.

  6. In the Computer Names window, click the Browse button and type in the computer name, which can be either its NetBIOS name or its DNS name, and click OK.

    Note 

    Multiple Computer Names can be entered either by entering them all in the screen at the same time or by using the Browse button multiple times.

  7. Verify the Computer Names list is accurate and click Next.

  8. In the Agent Installation Permissions window, select the Management Server Action Account radio button, and click Next.

  9. In the Agent Action Account window, select the Local System radio button and click Next.

  10. In the Agent Installation Directory window, verify the installation path and click Next.

  11. In the Completing the Install/Uninstall Agents Wizard window, review all of the choices and then click Finish.

    Important 

    In order to push MOM 2005 agents and have them report properly to the Management Server, the following ports must be available. If these ports are not available, it is likely that an RPC error will be generated. In order to properly push agents to MOM 2005 client computers, the following ports need to be open between the MOM 2005 Management Server and the individual clients:

    • — RPC Endmapper Port: 135

    • — Server Messenger Block Port: 455

    • — MOM Port: 1270 (both UDP and TCP)

    These ports are important when considering firewall issues and, in particular, Windows Server 2003 Service Pack 1 and Windows XP Professional Service Pack 2, which both come with the Microsoft firewall turned on and automatically blocking these ports. See Knowledge Base article 885726 for more information.
Configuring Agentless Managed Computers

Because not all computers can be managed using agents, MOM 2005 supports agentless managed computers. Computers discovered by the Management Server that cannot be installed with an agent will be visible in the Unmanaged Computers folder, as shown in Figure 3-14.

Image from book
Figure 3-14

To configure an unmanaged computer to be an agentless managed computer, follow these steps:

  1. Open the MOM 2005 Administrator Console, expand the Administration folder, expand the Computers folder, and click Unmanaged Computers.

  2. Right-click on the computer in the right-hand pane and select the Start Agentless Management option, as shown in Figure 3-15.

    Image from book
    Figure 3-15

  3. Click on the Pending Actions folder.

  4. Right-click on the computer and select the Start Agentless Management Now option.

Agentless management takes significantly more resources than using agents because the Management Server has to remotely connect to the computer and collect and retrieve information that would normally be handled by the locally installed agent on an agent-managed computer. Agentless management should be used only when it isn't feasible to install an agent, such as on an NT 4.0 computer.

Configuring Agent Failover

Agent-managed computers can be configured to point to failover to a secondary Management Server in case its primary Management Server is not available. In order to build this configuration, an administrator needs to deploy agents to all of its primary managed computers from the primary Management Servers.

Setup automatically installs and configures each Management Server in a Management Group as a redundant Management Server for the other Management Servers in the Management Group. If an agent is unable to connect to its primary Management Server, it will automatically failover to another Management Server within the same Management Group. It is possible, however, to control which Management Server will be used for the failover server. If only two Management Servers are in the Management Group, configuring agent failover is not needed. Use the following steps to configure redundant Management Servers for failover:

  1. Open the MOM 2005 Administrator Console, expand Administration, expand Computers, and then click Management Servers.

  2. Select the Management Server from the right-hand pane.

  3. Right-click the Management Server and select Properties from the context menu.

  4. Click the Failover tab.

  5. Enable or disable the check boxes to specify which Management Server(s) should be used for redundancy.

Controlling the failover of agents allows for better control of resources in the event of a Management Server failure versus letting agents failover without control and possibly overloading a particular Management Server.

Configuring Multihomed Agents

While an agent-managed computer can automatically failover to any Management Server in the same Management Group, the same cannot be said for Management Servers in other Management Groups. A multihomed agent configuration is not designed for failover.

There are times when two or more Management Groups, up to a maximum of four Management Groups, need to manage and monitor the same computer. For example, in some organizations, one team handles the hardware and operating systems while another team handles the applications, such as Exchange Server 2003, and is responsible for the application itself. In these situations, a computer can be configured to report to multiple Management Groups. In order to configure multihomed agents, the agents must first be installed for use by the first Management Group using any of the methods shown earlier in this chapter.

Once the MOM 2005 agents have been deployed to managed computers for the first Management Server, use any of the processes to install the agents, again, from other Management Servers in any other Management Groups that will be used to manage and monitor the computers. If a manual installation process is used, the installation steps include a few different options because the agents are already installed. The installation software detects that the agents have already been installed on the target computers so the Modify option is required to complete the additional installation.

When MOM 2005 agents are installed on agent-managed computers, the Management Server installs all of the software on the agent-managed computer and configures the settings with the Management Server's name for the first Management Server. When Management Servers from other Management Groups install agents, they do not add additional software to the agent-managed computer; they just update the information regarding the Management Servers where the agent reports its information.

Installing MOM 2005 Web Console

The MOM 2005 setup program provides the capability to install the Web Console on a separate computer. It is possible to use the MOM 2005 setup program to manually install and uninstall agents from a managed computer. Manually installed agents can be a security concern in that it isn't possible to tell whether they are valid computers. Typically, mutual authentication is used.

  1. Log onto the server using an account with administrative credentials.

  2. After starting the setup program, check the prerequisites on the server that will host the MOM 2005 Web Console by clicking the Check Prerequisites link.

  3. After you have checked all the prerequisites, click the Install Microsoft Operations Manager 2005 link.

  4. Click Next on the Welcome to the Microsoft Operations Manager 2005 Setup Wizard.

  5. Accept the license agreement and click Next.

  6. Enter the User Name, Organization Name, the CD Key, and click Next.

  7. Select the Custom radio button and click Next.

    Note 

    The Typical installation option installs the Database, Management Server, and both consoles. The Custom installation option is needed in this situation to install just the Web Console.

  8. Clear the MOM 2005 Database, the MOM 2005 Management Server, and the MOM 2005 User Interfaces options. Go back and enable the MOM 2005 Web Console option and verify that the Custom Setup is configured as in Figure 3-16 and click Next.

    Image from book
    Figure 3-16

  9. Click Next in the Prerequisite Check Passed window.

  10. Select the MOM Database Server Instance and the port number, and click Next.

    Note 

    Alternative port numbers are often used as security measures. Many virus attacks are focused on known ports, such as the default SQL port of 1433. The port number can be changed on the SQL server using Enterprise Manager.

  11. Enter the Management Server Action Account information and click Next.

  12. Enter the Data Access Server Account information, which includes the User Account, Password, and Domain or local computer information and click Next.

  13. Click Install to install the MOM 2005 Web Console.

  14. Click Finish to complete the installation of the MOM 2005 Web Console.

Once the Web Console is installed, it can be accessed through the http://www.servername:1272 to confirm its connectivity and functionality. The Web Console should have good connectivity with the SQL server because it directly accesses the MOM 2005 Database. The Web Console, does not connect to a Management Server; it connects to the MOM 2005 Database to provide content.

Installing MOM 2005 Reporting

The MOM 2005 Reporting component is an optional component for MOM 2005. Although it is not required, many organizations use its built-in reports and the capability to create custom reports from the data stored in the MOM 2005 Reporting database.

MOM 2005 Reporting requires:

  • SQL Server 2000, SP3a or higher

    • Database Authentication set to Windows only is preferred; however it will work with SQL Server and Windows authentication.

    • SQL service account configured to use Local System for security context; however it will run under an account with the proper permissions.

    • TCP/IP must be an enabled protocol.

  • SQL Server 2000 Reporting Services, SP2 or higher

  • MSSQLSERVER and SQLSERVERAGENT set to start automatically when the computer starts

  • Schedule Task Account

    Note 

    The Schedule Task Account is used to provide the proper permissions to run the task that transfers data from the MOM 2005 Database to the MOM 2005 Reporting database. This account needs to be a domain account if the MOM 2005 Reporting database is on a different server than the MOM 2005 Database. The setup routine will configure the proper permissions for this account.

  • Data Transfer Task Account

    Note 

    The Data Transfer Task Account is used to provide the security context for transferring the data from the MOM 2005 Database to the MOM 2005 Reporting database. This account needs to have the permissions required to access and copy the data from one SQL database to the other.

  • Reporting User Account

    Note 

    The Reporting User Account is used to provide the security context for the MOM 2005 Reporting server to connect to the MOM 2005 Reporting database and access the information needed to generate reports. This account must have database permissions to the Reporting database.

  • Visual Studio .NET 2003 to create new reports

    Note 

    Visual Studio .NET 2003 is not required to view standard reports, but it is required in order to modify and customize existing reports, and it is also required to develop new reports.

Once SQL 2000 and SQL 2000 Reporting Services have been installed and are properly service packed and patched according to the latest standards, SQL needs to be configured to meet the requirements of MOM 2005 Reporting.

MOM 2005 Reporting should be installed before importing and configuring management packs. Management packs contain rules for collecting performance data and event monitoring data. The information collected by the management pack can be used in reports. MOM 2005 management packs contain additional reports that can be used by the MOM 2005 Reporting environment. If MOM 2005 Reporting is installed after management packs have been imported into the MOM 2005 Management Server, then the reports will have to be installed separately.

Note 

The MOM 2005 Deployment Guide discusses how to manually install reports in Chapter 6.

Installing MOM 2005 Reporting creates a scheduled task that transfers the data in the MOM 2005 Database to the MOM 2005 Reporting database. This data is transferred before the MOM 2005 grooming process removes older data. Because this database is meant to contain long-term data, it is not limited to 30GB as the MOM 2005 Database is.

Selecting the Server for MOM 2005 Reporting

As with all servers, some of the choices are dependent on organizational requirements having to do with performance and security requirements. Proper planning and testing should be done to verify that performance and security requirements can be met with the proposed environment.

MOM 2005 Reporting can be installed on the same SQL Server 2000 server as the MOM 2005 Database. Performance may be a problem with both databases on the same SQL server depending on when reports are run, when backups are run, and whether the MOM 2005 Database is just too busy with its processes. If performance of the SQL server is not an issue, it would be a large cost savings to have both databases on the same server.

MOM 2005 Reporting can also be installed on the same server as the Management Server. If the environment is small enough or if the server is scaled to handle the load, MOM 2005 Reporting, the MOM 2005 Database, and the Management Server components can all be installed on the same server. It is possible to combine the roles, but capacity planning needs to be done and testing should also be done to confirm that the information behind the capacity planning is good information. If installing MOM 2005 Reporting on a Management Server, make sure the same folder is not used for the installation as was used for the Management Server. If the same folder is used, it will corrupt the installation of the Management Server and remove the proper permissions from the folder.

Follow the steps here to install MOM 2005 Reporting:

  1. Log onto the computer where MOM 2005 Reporting will be installed and run the setup program from the MOM 2005 installation media.

    Note 

    Make sure the account that is used for installation has administrative privileges for the local server as well as the server hosting the MOM 2005 Database.

  2. After starting the setup program, check the prerequisites on the server that will host the MOM 2005 Reporting component by clicking on the Check Prerequisites link and selecting the MOM 2005 Reporting radio button.

    Note 

    Select the Remove SQL Server Reporting Services Server check box and enter the Server Name if SQL 2000 Reporting Services is installed on a remote computer.

  3. After all the prerequisites have been checked, click the Install Microsoft Operations Manager 2005 Reporting link.

  4. Click Next on the Welcome to the Microsoft Operations Manager 2005 Reporting Setup Wizard.

  5. Accept the license agreement and click Next.

  6. Enter the User Name and Organization Name and click Next.

  7. Verify the Destination Folder is correct and click Next.

  8. Enter the name of the SQL Server Reporting Services Server Name if it is different than the name automatically entered and click Next.

  9. Click Next on the Prerequisite Check Passed window.

  10. Select the MOM Database Server Instance and the port number, and click Next.

    Note 

    Alternative port numbers are often used as security measures. Many virus attacks are focused on known ports, such as the default SQL port of 1433. The port number can be changed on the SQL server using Enterprise Manager.

  11. Enter the MOM 2005 Database Server information and click Next.

  12. Use the drop-down box in the SQL Server Database Instance window to select the proper SQL instance and click Next.

  13. In the Database and Log Files Information window, enter the database size for the Reporting database; then use the Advanced button and the two Change buttons in the Advanced window to move the database and log files to the best locations for performance and redundancy. Click OK, and then click Next.

    Note 

    This database can be configured to Automatically grow file (once it is installed), unlike the MOM 2005 Database, because the maximum size of the Reporting database is not constrained to 30GB in size.

  14. Enter the Data Transfer Task Account information and click Next.

  15. Enter the Reporting User Account information and click Next.

  16. Select the Yes, I want to send operational reports (Recommended) radio button and click Next.

    Note 

    The option is to select the No, I do not want to send operation reports radio button. The operational reports are XML files with non-proprietary information about how effective MOM 2005 is in the organization. This information includes statistics such as the number of alerts and counters processed. A sample can be found at http://www.go.microsoft.com/fwlink?linkid-21241.

  17. Click Install to install MOM 2005 Reporting.

  18. Click Finish to complete the installation of MOM 2005 Reporting. Once installed, the reporting console should appear as shown in Figure 3-17.

Image from book
Figure 3-17

Previous Page
Next Page