Documente Academic
Documente Profesional
Documente Cultură
5.5.5
Managing Microsoft Active Directory
User and Reference Guide
© 2010 Quest Software, Inc.
ALL RIGHTS RESERVED.
This guide contains proprietary information protected by copyright. The software described in this guide is furnished
under a software license or nondisclosure agreement. This software may be used or copied only in accordance with
the terms of the applicable agreement. No part of this guide may be reproduced or transmitted in any form or by any
means, electronic or mechanical, including photocopying and recording for any purpose other than the purchaser’s
personal use without the written permission of Quest Software, Inc.
The information in this document is provided in connection with Quest products. No license, express or implied, by
estoppel or otherwise, to any intellectual property right is granted by this document or in connection with the sale of
Quest products. EXCEPT AS SET FORTH IN QUEST'S TERMS AND CONDITIONS AS SPECIFIED IN THE
LICENSE AGREEMENT FOR THIS PRODUCT, QUEST ASSUMES NO LIABILITY WHATSOEVER AND
DISCLAIMS ANY EXPRESS, IMPLIED OR STATUTORY WARRANTY RELATING TO ITS PRODUCTS
INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A
PARTICULAR PURPOSE, OR NON-INFRINGEMENT. IN NO EVENT SHALL QUEST BE LIABLE FOR ANY
DIRECT, INDIRECT, CONSEQUENTIAL, PUNITIVE, SPECIAL OR INCIDENTAL DAMAGES (INCLUDING,
WITHOUT LIMITATION, DAMAGES FOR LOSS OF PROFITS, BUSINESS INTERRUPTION OR LOSS OF
INFORMATION) ARISING OUT OF THE USE OR INABILITY TO USE THIS DOCUMENT, EVEN IF QUEST HAS
BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Quest makes no representations or warranties with
respect to the accuracy or completeness of the contents of this document and reserves the right to make changes
to specifications and product descriptions at any time without notice. Quest does not make any commitment to
update the information contained in this document.
If you have any questions regarding your potential use of this material, contact:
Quest Software World Headquarters
LEGAL Dept
5 Polaris Way
Aliso Viejo, CA 92656
www.quest.com
email: legal@quest.com
Refer to our Web site for regional and international office information.
Trademarks
Quest, Quest Software, the Quest Software logo, Foglight, IntelliProfile, PerformaSure, Spotlight, StealthCollect,
TOAD, Tag and Follow, and vFoglight are trademarks and registered trademarks of Quest Software, Inc in the United
States of America and other countries. For a complete list of Quest Software’s trademarks, please see http://
www.quest.com/legal/trademark-information.aspx. Other trademarks and registered trademarks are property of their
respective owners.
Welcome to the Foglight for Active Directory User and Reference Guide. This guide
has been prepared to assist you in becoming familiar with the Cartridge for Active
Directory. It provides basic navigation techniques, describes the dashboards, views and
reports included with the Cartridge for Active Directory, and provides information
about the rules that are available for your monitored system.
For more information about the core Foglight product and functionality, see the
respective guides that are referenced throughout this document.
Email info@quest.com
Refer to our web site for regional and international office information.
This chapter describes the basic techniques used to navigate through the Cartridge for
Active Directory. It is intended to introduce you to the layout of the Foglight user
interface and how to navigate through the dashboards and views provided with the
Cartridge for Active Directory.
For more information about Foglight navigation, see the Foglight User Guide.
This chapter contains the following information:
• Foglight Browser Interface Panels
• Drill Down Actions
• Breadcrumb Trail
• Time Range
• Lists
• Alarms and Status Indicators
• Mouse-over Actions
Note The screen shots and procedures in this document reflect the latest features in the user
interface. If you are using an earlier version of Foglight (pre-5.5.7) you will see different
controls (for example, Search controls on lists). See the Foglight User Guide for the Foglight
version you are using.
12 Foglight Cartridge for Active Directory
User and Reference Guide
Navigation Panel
The navigation panel, at the left of the browser interface, operates like a drawer and is
open by default. To close the navigation panel, click the arrow to the far left of the
Foglight browser interface. Click the arrow again to open the navigation panel.
The navigation panel contains an expandable view of all the dashboards available to the
current user. To access a specific dashboard, open the appropriate module (for example,
Active Directory) and select the dashboard to view it in the display panel.
The navigation panel also provides access to the Foglight Administration and
Configuration areas, and may provide access to some cartridge-specific navigational
views (for example, the Active Directory Enterprise view for the adExplorer
dashboard.)
If you do not see any dashboards in the navigation panel, the user ID with which you
signed in may not have been assigned to a group. For details, see the Foglight User
Guide.
Display Panel
The display panel is the large panel in the middle of the browser interface and is used to
view current dashboards and reports, as well as to create new dashboards and reports.
You can increase the size of the display panel by resizing the navigation panel, or if
open, by closing the action panel.
Action Panel
The action panel, at the right of the browser interface, operates like a drawer and is
closed by default. To open the action panel, click the arrow to the far right of the
Foglight browser interface. Click the arrow again to close the action panel.
The action panel lists the actions and tasks you can perform within the currently
displayed dashboard. It also contains the views and data that you can add to a dashboard
or report, and provides access to the online help files.
14 Foglight Cartridge for Active Directory
User and Reference Guide
Note When your cursor is positioned over a drillable component, the cursor will change to a
selector icon, typically a hand with a pointing finger.
For example, in the Forest Environment Summary (Individual Forest) view in the
Active Directory Environment dashboard, click the DNS Servers heading in the
Inventory By Category view. A Domain Controller Inventory popup appears that lists
the domain controllers (DCs) that are designated as DNS servers. Click a DC in this list
to drill down further to explore the selected DC’s health and alarms to diagnose
problems.
Breadcrumb Trail
As you drill down into more detailed views within a cartridge’s dashboard, the names of
the previous views are displayed in a breadcrumb trail at the top of the current
dashboard. In addition to providing you with context, this breadcrumb trail displays the
name of the current view and provides a simple mechanism for returning to any of its
related parent levels.
The following breadcrumb trail was created while drilling down from the Active
Directory Environment dashboard into the adExplorer dashboard. Each item within the
breadcrumb trail is a hyperlink to a previously viewed parent level.
Cartridge Navigation Basics 15
Time Range
Time Range
By default, the Cartridge for Active Directory displays metrics, alerts and messages that
have occurred within the last four hours. This time range, however, is configurable
using the Time Range popup located in the upper right corner of the browser interface.
Using the Time Range popup, you can select from predefined time ranges or you can
specify a custom range using either the slide time bar or calendar precision controls to
specify a date and time. When you modify the time range for a dashboard or view, it
adjusts the range for all of the views contained within and drilldowns accessed from that
dashboard or view. It does not adjust the time range for any parent views.
For more information about modifying the time range, see the Foglight User Guide.
Lists
The lists displayed throughout the Cartridge for Active Directory allow you to define
the sort criteria and order, hide columns, and filter content based on user-defined search
criteria.
Sorting Content
Some views in the Cartridge for Active Directory dashboards contain sortable lists. An
example of a sortable list is the Domain Controllers view on the adExplorer dashboard.
16 Foglight Cartridge for Active Directory
User and Reference Guide
An arrow in the column heading identifies the sort criteria and order, ascending or
descending, being used to display information.
To change the sort criteria in a list:
1 Click on the column heading to be used to sort the list.
2 The sort order is in ascending order, but can be changed to descending order by
clicking on the heading a second time.
The list is redrawn according to your specification.
Hiding Columns
The Cartridge for Active Directory lists display a default set of columns; however, you
can customize the content of the lists by hiding columns.
To hide columns in the list:
1 Select the button in the upper right corner of the list to display the Show
Columns dialog.
2 On the Show Columns dialog, click a column heading from the list to clear the
corresponding check box.
3 Select Apply to redisplay the list displaying only the columns that are currently
selected in the Show Columns dialog.
Filtering Content
Many of the lists displayed in the Cartridge for Active Directory dashboards and views
allow you to filter the information displayed using the search controls at the top of the
list. You can either conduct a search on all of the columns in the list or specify the
columns to be searched.
Figure 2
To filter a list based on content in any of the fields:
1 Enter a text string into the text field.
Note Select the Use Regular Expression option that appears when you select the arrow
control to the right of the Search field to specify a regular expression which allows
you to enter a search pattern using wildcard characters instead of a literal text string.
The list now displays the entries found as a result of your search.
2 To clear the search string and display the original list, select .
Cartridge Navigation Basics 17
Lists
2 To define the number of items to be included in the list and the sort criteria and
order of the results, select the Limit to nn items from top check box.
3 By default, the top 10 items are displayed. To change this value, enter a different
number in the value field.
4 The Order by field contains the column heading currently selected as the sort
criteria. To change the sort criteria, click in the Order by field and select the
column heading to be used. Use the arrow control to define the sort order:
ascending or descending.
5 To define the search criteria, select the Match the following rule check box and
specify the following information:
• Click in the first field to specify the column to be searched.
• Use the arrow control to define the comparison operator to be used (for
example, does not contain, starts with, ends with.)
• Enter the text string to be matched.
• The Case Insensitive check box is selected by default and will find matches
regardless of case. For a case-sensitive search, clear this check box.
6 To add an additional search rule, select and repeat the previous step to
specify the additional search criteria.
Note When multiple rules are specified, the ‘and’ operator is used and all rules must be
met in order for an entry to be included in the search results.
7 Once you have entered your search criteria, select Search to close the dialog and
conduct the search.
18 Foglight Cartridge for Active Directory
User and Reference Guide
9 To clear the search string and display the original list, select .
Fatal (red)
Critical (orange)
Warning (yellow)
Normal (green)
The Foglight alarm types respond to thresholds that are defined within the Cartridge for
Active Directory rules. As metrics change and move through thresholds, alarms are
raised. As a metric moves through thresholds, the severity of an alarm changes, which
causes the associated status indicators to change.
For detailed information about the Cartridge for Active Directory rules and metrics, see
“Cartridge for Active Directory Rules” on page 123.
Mouse-over Actions
Many items within the Cartridge for Active Directory dashboards display additional
information when you hover your cursor over them. For example, when you hover the
cursor over a graph you will see the specific value(s) that correspond to the position of
the cursor. When you hover the cursor over an individual metric, you will see a small
descriptive popup.
2
Exploring the Cartridge for Active
Directory Dashboards
The Foglight Cartridge for Active Directory includes dashboards which aid in the
monitoring, analysis and investigation of Active Directory health and performance.
These dashboards provide real-time views into the present state and relationships of the
major components in your Active Directory environment, including:
• Forests - the top-level object within the Active Directory infrastructure which
consists of a group of Active Directory domains.
• Domains - a partition of the Active Directory forest used to implement directory
security and manage resources.
• Sites - a logical grouping of computers within Active Directory that have reliable
connectivity.
• Domain Controllers (DCs) - a server that is running a Windows Server operating
system and has Active Directory (or Active Directory Domain Services) installed,
which is tasked with managing a replica of an Active Directory domain.
This chapter explains how to access the Active Directory dashboards, describes the
layout of each dashboard, and explains how to navigate through the embedded views of
each dashboard. For a description of the metrics captured in each of the embedded
views, see “Cartridge for Active Directory Views” on page 59.
20 Foglight Cartridge for Active Directory
User and Reference Guide
Purpose
The Active Directory Environment Overview provides you with an overview of your
Active Directory environment.
Figure 1
The overview contains a tile for the following object types in your Active Directory
infrastructure: forests, domains, sites, and domain controllers. Each tile shows the
number of corresponding objects of that type in your Active Directory infrastructure as
well as a count of objects of that type in each of the alarm states (fatal, critical, warning,
and normal).
Clicking a tile displays summary information for that object type in the Quick View.
Clicking an alarm state (for example, warning) on a tile displays summary information
in the Quick View for the objects of that type that are in the selected alarm state.
Quick View
The Quick View is located across the middle of the Active Directory Environment
dashboard.
Purpose
The Quick View displays summary information pertaining to the component selected
from the Active Directory Environment Overview and Object Tree view. For example,
• Select an object tile in the Active Directory Environment Overview to view
summary information for all objects of the selected type.
• Select an alarm indicator in an object tile in the Active Directory Environment
Overview to view summary information for the objects of that type in the selected
alarm state.
22 Foglight Cartridge for Active Directory
User and Reference Guide
• Select an object item from the Object Tree view (as described below) to view
summary information for that individual object.
Sites Tile - Summary A tombstone for each site in the selected state.
Alarm Indicator
24 Foglight Cartridge for Active Directory
User and Reference Guide
Sites Tile or Site Item In addition to a tombstone for the selected site,
Alarm Indicator the following embedded views are displayed:
• Inventory By Category View
• IP Subnets View
• Domain Controller Details View
• Inter-Site Transports View
• Top 3 CPU Consumers View
FAQts View
A FAQts view is displayed in the lower left corner of the Quick View on the Active
Directory Environment dashboard and displays questions relating to the selected object.
The questions in this view are scoped to the object tile selected in the Active Directory
Environment Overview. For example, select the forest tile to view the questions about
forests.
Figure 2
Exploring the Cartridge for Active Directory Dashboards 25
Active Directory Environment Dashboard
Use the Previous and Next buttons to scroll through the questions available for the
selected object. Use the Show Me button to display the answer to the displayed
question. Select the button to display a list of all relevant questions from which to
select.
Alarms View
The Alarms view that appears at the bottom of the Quick View in the Active Directory
Environment dashboard displays a sortable list of all the outstanding alarms for the item
selected in the Object Tree view.
Note The FAQts navigation tab is also available in the adExplorer dashboard when you are
viewing an object in the adExplorer Primary view.
Purpose
The FAQts view enables you to get answers to common questions about your Active
Directory environment.
Figure 3
26 Foglight Cartridge for Active Directory
User and Reference Guide
Categories View
The Categories view lists the categories (that is, forests, domains, sites or domain
controllers) for which questions can be answered by Foglight.
Click a category to view a list of questions relating to that type of Active Directory
object.
Questions View
The Questions view lists the questions available for the category selected in the
Categories view.
Click a question from the list to have Foglight gather and report an answer.
If the list of questions is long, you can narrow it down by entering a text string in the
Search field at the top of the list. To clear the filter and return to the original list of
questions, click .
Note Select the Use Regular Expression option, that appears when you select the arrow control
to the right of the Search field, to specify a regular expression which allows you to enter a
search pattern using wildcard characters instead of a literal text string.
Answer View
The Answer view provides an answer to the question selected in the Questions view.
The answer is provided in the following form:
Top x <objects of category> ...
where x is the number of objects of the category selected in the Categories view.
Exploring the Cartridge for Active Directory Dashboards 27
adAlarms Dashboard
adAlarms Dashboard
The adAlarms dashboard shows the alarms that have been triggered but not cleared
within the Cartridge for Active Directory. It can be used to isolate alarms specific to
your Active Directory environment.
Figure 4
Alarms Overview
The Alarms Overview is located across the top of the adAlarms dashboard.
Purpose
The Alarms Overview provides a quick and easy way for you to view Cartridge for
Active Directory alarms grouped by object type and severity level. You can use this
overview to monitor alarms and to identify the sources of problems with your Active
Directory infrastructure. Click an alarm count for a particular object type to display a
popup that shows alarms specific to the object type selected.
28 Foglight Cartridge for Active Directory
User and Reference Guide
Purpose
The Alarms List is a sortable list that displays the outstanding Cartridge for Active
Directory alarms. Each alarm row in the Alarms List contains the following
information:
Object The icon in the first column identifies the source of the
alarm:
Domain Controller
Domain
Forest
Site
Severity The icon in this column indicates the severity of the alarm.
Domain Controller Displays the name of the DC where the alarm occurred.
Clicking the DC name displays a popup menu where you
can choose to view details about the selected DC in either
the adExplorer dashboard or Quick View.
Time Displays the date and time when the alarm occurred.
Clicking an alarm’s severity icon, object icon, alarm message or time displays a popup
where you can acknowledge or clear the alarm. This popup provides pertinent
information about the selected alarm, such as the rule of origin of the alarm, the history
of the alarm, and all of the notes attached to the alarm. For more information about
managing alarms, see the Foglight User Guide or online help.
adExplorer Dashboard
The adExplorer dashboard has a hierarchial interface that you can use to view various
performance metrics and alarms within your Active Directory infrastructure. It provides
informative views through which you can quickly and easily access detailed
information about any of the objects in your Active Directory environment.
The adExplorer dashboard contains the following views:
• Active Directory Enterprise View
• adExplorer Primary View
Purpose
The Active Directory Enterprise view provides an organized view of the Active
Directory objects that are monitored by the Cartridge for Active Directory.
30 Foglight Cartridge for Active Directory
User and Reference Guide
Figure 5
Clicking an object type container or object in the Active Directory Enterprise view
refreshes all of the views in the adExplorer Primary view to display information
pertaining to the selected object.
Topology View
The Topology view is organized into a tree using object type containers for branches.
The top-level containers are the main Active Directory object types (that is, forests,
domains, sites, and domain controllers) and each object type container contains every
object of that particular type that is managed by the cartridge. Click the expansion state
box to the left of a container to expand the view to display the individual objects.
To the left of each object, a status indicator represents the alarm of highest severity that
is outstanding for that object.
Exploring the Cartridge for Active Directory Dashboards 31
adExplorer Dashboard
Hierarchy View
The Hierarchy view represents the logical layout of the containers in your Active
Directory environment. In the Hierarchy view, each forest container is organized into a
tree illustrating where each domain and domain controller resides within your Active
Directory environment. Click on the expansion state box to the left of a container to
expand the view to display subordinate objects.
To the left of each object, a status indicator represents the alarm of highest severity that
is outstanding for that object.
Figure 6
Purpose
The adExplorer Primary view displays performance metrics and alarms related to the
objects within an object type container or an individual Active Directory object.
The heading area located across the top of the adExplorer Primary view consists of the
following main components:
• an object icon and name
• an alarm summary for the selected object type container or object
• navigation tabs
32 Foglight Cartridge for Active Directory
User and Reference Guide
The object icon and name to the left of the heading specify the object type container or
individual object that is selected in the Active Directory Enterprise view.
The alarm summary at the right of the heading shows you the number of alarms at each
severity level that are outstanding for the selected object. Clicking an alarm count
displays a popup that lists the active alarms for the object. From this popup you can
display additional details about an individual alarm.
The navigation tabs are located immediately below the selected object’s name. These
navigation tabs vary from object to object, but generally contain an object summary tab,
a FAQts tab, and one or more tabs of other relevant information. The following table
lists the navigation tabs displayed based on the item selected in the Active Directory
Enterprise view.
Summary View
Selecting the Summary navigation tab displays the Summary view just below the
heading. This view provides a hierarchical inventory, in the form of tiles, of the objects
that are related to the object or object container selected in the Active Directory
Enterprise view. Each tile shows how many objects of the corresponding object type
there are, as well as the count of objects of that type in each of the alarm states (fatal,
critical, warning, and normal).
More detailed information for the selected object or object container is displayed in
views below the Summary view.
On a tile, click the object type icon, the object type name, or the object count, to view an
inventory popup that lists all objects of the corresponding type, along with their
respective states. Click an object in the inventory popup to view details for that object in
the adExplorer Primary Summary view.
On a tile, click an alarm state or the number below it to view an alarms popup that
shows the outstanding alarms of that state for the corresponding object type. Click an
alarm in the alarms popup to view details about the selected alarm.
Note If the alarm state has a count of zero, you cannot select that alarm state. When you click a
normal state icon or count, the adExplorer page is refreshed, but you do not see the alarms
popup because there are no alarms associated with the normal state.
34 Foglight Cartridge for Active Directory
User and Reference Guide
Hovering the mouse over a data point in a graph displays a popup explaining the data
point.
To change the appearance of a graph, click the icon that appears at the upper right
corner of the graph when you hover the mouse over a Top 3 Consumer view. From the
dialog, select the type of chart and the bounds to be used to redraw the data. In addition,
you can click and drag the axis of a graph to zoom into the graph. For more information
on redrawing graphs, see the Foglight User Guide.
and graphical representations of utilization metrics associated with the selected DC.
Selecting the Details link in the upper right corner of this view allows you to drill down
into even more detailed resource utilization metrics the selected DC.
Alarms View
The Alarms view appears at the bottom of the adExplorer Primary view and displays a
sortable list of the alarms that are outstanding for the object type container or object
selected in the Active Directory Enterprise view.
36 Foglight Cartridge for Active Directory
User and Reference Guide
Figure 7
For more information on using the Agent Setup wizard and the Agent Management List
view to manage your Active Directory agents, see “Managing Active Directory Agents”
on page 39.
Exploring the Cartridge for Active Directory Dashboards 37
Rule Management Dashboard
Figure 8
For a description of the Active Directory Rule Management dashboard and for more
information on the Cartridge for Active Directory rules and how to enable, disable or
modify them, see “Cartridge for Active Directory Rules” on page 123.
38 Foglight Cartridge for Active Directory
User and Reference Guide
3
Managing Active Directory Agents
The Active Directory agents collect data from remote Active Directory domain
controllers, which is then used to populate the health and performance metrics presented
throughout the Cartridge for Active Directory dashboards and views.
The Cartridge for Active Directory provides an additional dashboard that can be used to
manage Active Directory agent instances. Therefore, the Active Directory agent
instances can be created and managed using one of the following dashboards:
• Agent Status dashboard (Dashboards > Administration > Agents > Agent
Status)
• Active Directory Agent Management dashboard (Dashboards > Active
Directory > Agent Management)
This chapter provides a description of the Deploy Agent Package dialog, Agent Setup
wizard used to add and configure new Active Directory agents and the Agent
Management list which is populated with information about each Active Directory
agent instance. It also provides a description of the Active Directory agent properties
used to connect to the target server from which data is to be collected.
Figure 1
To deploy the Active Directory agent package:
1 Select the Deploy Agent Package link.
2 On the Deployment Agent Package dialog, select the Foglight Agent Manager to
which the Active Directory Agent package is to be deployed.
3 Click Deploy.
4 Once successfully deployed, a confirmation dialog appears. Select the close
button in the upper right corner to close this dialog.
Note Because you are only deploying agent packages at this time, the newly deployed
package will NOT appear in the Agent Management list.
Managing Active Directory Agents 41
Active Directory Agent Management Dashboard
Figure 2
From this page, select the Foglight Agent Manager Host to be used for the new
Active Directory agent instances.
Foglight Agent Displays the following information from the Agent Host
Manager Information dashboard (at Administration > Agents > Agent Hosts):
• Host Name
• FglAM Version
• OS
• OS Architecture
Has Agent Package Indicates whether the Active Directory agent package has
been deployed to the Foglight Agent Manager host(s). A
green check in this column indicates that the Active
Directory agent package has been deployed.
Note If the host you want to use does not contain a green check
mark, exit the Agent Setup wizard and select the Deploy
Agent Package task, back on the Active Directory Agent
Management dashboard.
Figure 3
From this page, select the domain to be used to search for DCs where Active
Directory agent instances are to be created and activated.
Figure 4
From this page, select one or more DCs that are to be monitored. This page displays
the following information for each DC found on the selected domain.
Note All selected servers will use the same user credentials for access.
Domain Controller Displays the name of the DCs found on the selected
domain.
Figure 5
From this page, enter the credentials to be used to access the selected DCs.
Password Enter the password associated with the user name entered
above.
Managing Active Directory Agents 45
Active Directory Agent Management Dashboard
Figure 6
The Agent Management list contains the following information for each configured
Active Directory agent instance.
Column Description
Figure 7 Use the selection check boxes to select agent instances for
activation/deactivation, starting/stopping data collection,
editing properties, or removal.
Agent Name Displays the name of the agent instance created for a DC.
46 Foglight Cartridge for Active Directory
User and Reference Guide
Foglight Agent Displays the name of the Foglight Agent Manager Host
Manager Host assigned to each Active Directory agent instance.
Use the buttons at the top of this list to manage your Active Directory agent instances,
as described in the following table:
Button Description
Host User Name N/A A user account that has elevated privileges
(Domain Administrator) on the target
server.
Note If the target server is running Windows
2008 R2, this user account must have
access to the registry keys mentioned in
the Prerequisites and Troubleshooting
Tips chapter in the Managing Microsoft
Active Directory Installation Guide.
Host Password N/A The password associated with the user name
entered above.
48 Foglight Cartridge for Active Directory
User and Reference Guide
Is Virtual Machine False If you are not using the Cartridge for
VMWare to monitor this agent and the
target server is a virtual machine, set the Is
Virtual Machine setting to True.
Note The Cartridge for Active Directory can
collect data from virtual machines that are
not monitored by the VMWare cartridge
and also from physical machines.
Therefore, this setting must reflect the
type of target machine being used. That
is, if the target server is a physical
machine, set this setting to False.
Override Naming False Set this option to True if the forest to which
Validation this server belongs has more than one tree
or contains more than one contiguous name
space for any other reason. For example, if
Domain.corp and Domain.local are in the
same forest, set this option to True.
Note When the Override Naming Validation
option is set to True, enter the fully
qualified domain name (not the IP
address) of the target server in the Host
Name field.
In addition, there are global secondary properties used by all Active Directory agents
that define the services to be monitored and the data collection schedule to be used. The
following table lists the collectors being used by the cartridge and the default collection
interval for each.
ad objects;accounts 1 minute
ldap;replication 30 seconds
ping;fsmos 1 minute
dns 1 minute
The following procedure steps you through the process of modifying the properties for
the Active Directory agents. For more detailed instructions on using the Agent Status
dashboard to edit agent properties, see the Foglight Administration and Configuration
Guide or online help.
To modify an agent’s properties:
1 From the navigation panel, navigate to Dashboards > Administration > Agents
> Agent Status.
50 Foglight Cartridge for Active Directory
User and Reference Guide
2 On the Agent Status dashboard, select an agent from the list and click Edit
Properties.
The Agent Status dashboard refreshes, showing the current properties of the
selected agent instance.
3 Select one of the following property scope options:
• Modify the private properties for this agent.
• Modify the properties for all Active Directory agents.
Note It is best to configure the agent properties that are to be applied globally to the
majority of the Active Directory agent instances. Then go back and modify the
private properties of those individual agents as required.
Selecting one of these options enables the agent’s properties allowing you to edit
them.
4 In the Configuration panel, modify the agent’s properties as required.
5 To modify the services being monitored, select the Monitored Services list to be
edited and select Edit.
This displays the Monitored Services dialog, which lists the currently monitored
services.
• To remove a service from the list, select the service to be removed and select
Delete Selected Row(s). To select multiple services, use the Ctrl or Shift
keys.
• To add a service to the list, select Add Row and enter the name of the service
to be monitored.
• After adding or removing services from the monitored services dialog, select
Save Changes.
• Click the close button in the upper right corner to close the dialog.
6 To change a collector, in the Data Collection Scheduler panel, select the Collector
Config list to be edited and select Edit.
This displays the Collector Config dialog, which lists all of the collectors and
their currents settings.
Note A zero value means that the collector is turned off and is not collecting data.
Note The Cartridge for Active Directory needs the basic host metrics (CPU, Memory,
Network, Storage). If the Cartridge for VMWare is collecting these metrics, the
Cartridge for Active Directory will use these host metrics. However, if the Cartridge
for VMWare in not collecting host metrics, you must enable the host detail collection
by setting its collection interval to a value between 1 and 10 minutes.
Managing Active Directory Agents 51
Active Directory Agent Properties
• To edit an entry in the list, double-click the cell containing the entry to be
changed, and enter a different value.
• To delete a collector, select the collector to be removed and select Delete
Selected Row(s). To select multiple collectors, use the Ctrl or Shift keys.
• After editing the list, select Save Changes.
• Click the close button in the upper right corner to close the dialog.
Note Advanced users can add custom collectors using the developers kit. See the
Foglight online help for details.
7 Back on the Agent Status dashboard, select Save to save your selections.
8 Select Back To Agent Status to return to the agent list on the Agent Status
dashboard.
52 Foglight Cartridge for Active Directory
User and Reference Guide
4
Reporting on Your Active Directory
Enterprise
The Cartridge for Active Directory comes with a set of pre-defined reports that can be
run from the Reports dashboard. Using this dashboard, operators can run reports, build
custom reports, and view generated reports. Advanced Operators can also schedule and
manage reports.
To access the Reports dashboard, from the Foglight navigation pane, select
Dashboards > Reports. From the Reports dashboard, click the links provided as
described below:
• Click Generate a Report to select and generate a report using the Generate
Report wizard.
• Click Schedule a Report to select and schedule a report using the Schedule
Report wizard.
• Click Build a Custom Report to choose the building blocks for your custom
report using the Create Report wizard.
• Click Manage Reports to access the Manage Reports dashboard, where you can
download, delete and view details about generated reports.
For more information on using the Foglight reporting features, see the Foglight User
Guide or online help.
54 Foglight Cartridge for Active Directory
User and Reference Guide
Domain Controller Shows all FAQts for the • Time Range: Last 4 hours
FAQts selected DCs. • * Domain Controllers
Domain Controller Shows the DCs in the selected • Time Range: Last 4 hours
Inventory for Domain domain. • * Domain
Domain Controllers Shows the top and bottom DCs • Time Range: Last 4 hours
Available CPU and based on available CPU and • DC Count: 25
Memory - Detail memory.
Reporting on Your Active Directory Enterprise 55
Cartridge for Active Directory Reports
Domain Controllers Shows the top and bottom five • Time Range: Last 4 hours
Available CPU and DCs based on available CPU
Memory - Summary and memory.
Domain Controllers Displays the DC count, logical • Time Range: Last 4 hours
Logical Disks With disk count, total disk space • * Percent
X% Or Less Free available, and total disk space
Storage - Detail used for all DCs with x% or
less free storage. Plus
additional details.
Domain Controllers Displays the DC count, logical • Time Range: Last 4 hours
Logical Disks With disk count, total disk space • * Percent
X% Or Less Free available, and total disk space
Storage - Summary used for all DCs with x% or
less free storage.
Domain Controllers Displays the DC count, logical • Time Range: Last 4 hours
Logical Disks With disk count, total disk space • * Percent
X% Or More Free available, and total disk space
Storage - Detail used for all DCs with x% or
more free storage. Plus
additional details.
Domain Controllers Displays the DC count, logical • Time Range: Last 4 hours
Logical Disks With disk count, total disk space • * Percent
X% Or More Free available, and total disk space
Storage - Summary used for all DCs with x% or
more free storage.
Domain Controllers Shows the capacity and usage • Time Range: Last 4 hours
Storage of logical and physical disks
on the selected DCs.
56 Foglight Cartridge for Active Directory
User and Reference Guide
Domain Controllers Shows the top and bottom DCs • Time Range: Last 4 hours
Utilization - Detail based on CPU Used Hz, CPU • DC Count: 25
percent privileged time,
memory consumed, disk
utilization, disk transfer rate
and network transfer rate for
the specified time range. Plus
additional details.
Note The CPU Used Hz metric
can be used to compare
relative CPU utilization
across different systems.
Domain Controllers Shows the top and bottom five • Time Range: Last 4 hours
Utilization - DCs based on CPU Used Hz,
Summary CPU percent privileged time,
memory consumed, disk
utilization, disk transfer rate
and network transfer rate for
the specified time range.
Note The CPU Used Hz metric
can be used to compare
relative CPU utilization
across different systems.
Domains FAQTS Shows the domain FAQts for • Time Range: Last 4 hours
the selected domains. • * Domains
Forest Domain Shows the DCs in each • Time Range: Last 4 hours
Inventory domain in the selected forest. • * Forest
Forest FAQTS Shows the forest FAQts for the • Time Range: Last 4 hours
selected forests. • * Forest
Resource Utilization Shows metrics for the CPU, • Time Range: Last 4 hours
network, memory and disk • * Domain Controller
utilization for the selected DC.
Reporting on Your Active Directory Enterprise 57
Cartridge for Active Directory Reports
Site FAQTS Shows the site FAQts for the • Time Range: Last 4 hours
selected sites. • * Site
58 Foglight Cartridge for Active Directory
User and Reference Guide
5
Cartridge for Active Directory
Views
Foglight displays monitoring data in views that group, format, and display data. The
main types are described below.
Dashboards are top-level views that contain lower-level views. The dashboards supplied
with Foglight, as well as those created by users, are accessible from the navigation
panel.
Lower-level views can be added to dashboards or can be accessed by drilling down
from a dashboard. They receive and display data directly from the Foglight
Management Server or from other views. Some views filter or select data that appears in
other views in the same dashboard. Some are tree views with expandable nodes for
selecting servers, applications or data.
This chapter provides a description of the lower-level views on the Cartridge for Active
Directory dashboards. The beginning of the chapter explains which views are available
to find specific information for each of the Active Directory objects. The latter part of
the chapter provides a detailed description of the information and metrics displayed in
embedded views.
60 Foglight Cartridge for Active Directory
User and Reference Guide
Forest Views
A forest is the top-level object within the Active Directory infrastructure and consists of
a group of Active Directory domains. The following views are available to monitor the
health of your Active Directory forests:
• Forests Environment Summary (All Forests) View
• Forest Environment Summary View
• Forests Explorer Summary (All Forests) View
• Forest Explorer Summary View
Figure 1
A forest tombstone displays the following information:
• name of the forest
• number of users in the forest
• number of alarms in each state in the forest
• number of domains in the forest and number of domains in each alarm state
• number of sites in the forest and number of sites in each alarm state
• number of DCs in the forest and number of DCs in each alarm state
• Forest Functional Level
Cartridge for Active Directory Views 61
Forest Views
Figure 2
62 Foglight Cartridge for Active Directory
User and Reference Guide
Note You can also click a forest’s tombstone in the Forests Environment Summary (All Forests)
view to display this view.
Embedded Views
In addition to the forest tombstone, the following embedded views are displayed:
• Inventory By Category View
• Statistics View
• FSMO Roles View (Forest)
• Trusts View
• Top 3 Consumers View
• FAQts View
• Alarms View
Cartridge for Active Directory Views 63
Forest Views
Figure 3
Note You can also click the view in Explorer link on the Forests Environment Summary (All
Forests) view.
64 Foglight Cartridge for Active Directory
User and Reference Guide
Embedded Views
This view is made up of the following embedded views:
• Top 3 CPU Consumers View
• Top 3 Memory Consumers View
• Top 3 Network Consumers View
• Top 3 Storage Consumers View
• Domain Controllers View
• Alarms View
Figure 4
Cartridge for Active Directory Views 65
Forest Views
Note You can also click the view in Explorer link on the Forest Environment Summary view for
the selected forest.
Embedded Views
In addition to the forest tombstone, this view is made up of the following embedded
views:
• Top 3 DS Directory Reads/Sec View
• Top 3 LDAP Bind Times View
• Top 3 Replication Queue Length View
• Top 3 CPU Consumers View
• Top 3 Memory Consumers View
• Top 3 Network Consumers View
• Top 3 Storage Consumers View
• Domain Controllers View
• Alarms View
66 Foglight Cartridge for Active Directory
User and Reference Guide
Domain Views
A Domain is a partition of the Active Directory forest used to implement directory
security and to manage resources.
The following views are available to monitor the health of your Active Directory
domains:
• Domains Environment Summary (All Domains) View
• Domain Environment Summary View
• Domains Explorer Summary (All Domains) View
• Domain Explorer Summary View
Figure 5
A domain tombstone displays the following information:
• name of the domain
• number of users in the domain
• number of domain alarms in each state
• number of sites in the domain and number of sites in each alarm state
• number of DCs in the domain and number of DCs in each alarm state
• Domain Functional Level
Cartridge for Active Directory Views 67
Domain Views
Figure 6
68 Foglight Cartridge for Active Directory
User and Reference Guide
Note You can also click a domain’s tombstone in the Domains Environment Summary (All
Domains) view to display this view.
Embedded Views
In addition to the domain tombstone, the following embedded views are displayed:
• Inventory By Category View
• Statistics View
• FSMO Roles View (Domain)
• Trusts View
• Top 3 Consumers View
• FAQts View
• Alarms View
Cartridge for Active Directory Views 69
Domain Views
Figure 7
Note You can also click the view in Explorer link on the Domains Environment Summary (All
Domains) view.
70 Foglight Cartridge for Active Directory
User and Reference Guide
Embedded Views
This view is made up of the following embedded views:
• Top 3 CPU Consumers View
• Top 3 Memory Consumers View
• Top 3 Network Consumers View
• Top 3 Storage Consumers View
• Domain Controllers View
• Alarms View
Figure 8
Cartridge for Active Directory Views 71
Domain Views
Note You can also click the view in Explorer link on the Domain Environment Summary view for
the selected domain.
Embedded Views
In addition to the domain tombstone, this view is made up of the following embedded
views:
• Top 3 DS Directory Reads/Sec View
• Top 3 LDAP Bind Times View
• Top 3 Replication Queue Length View
• Top 3 CPU Consumers View
• Top 3 Memory Consumers View
• Top 3 Network Consumers View
• Top 3 Storage Consumers View
• Domain Controllers View
• Alarms View
72 Foglight Cartridge for Active Directory
User and Reference Guide
Site Views
A Site represents a logical grouping of computers within Active Directory that have
reliable connectivity. Active Directory uses the site layout to create the best replication
topology for the DCs in the forest. Site topology is not related to the domain hierarchy.
That is, a domain can appear in many sites, and a site can contain many domains.
When you know the location of a directory problem, the Site views provide a quick way
to get the metrics about the site and DCs in that site.
The following views are available to monitor the health of the sites within your Active
Directory infrastructure:
• Sites Environment Summary (All Sites) View
• Site Environment Summary View
• Sites Explorer Summary (All Sites) View
• Site Explorer Summary View
Figure 9
Cartridge for Active Directory Views 73
Site Views
Figure 10
Cartridge for Active Directory Views 75
Site Views
Note You can also click a site’s tombstone in the Sites Environment Summary (All Sites) view to
display this view.
Embedded Views
In addition to the site tombstone, the following embedded views are displayed:
• Inventory By Category View
• IP Subnets View
• Domain Controller Details View
• Inter-Site Transports View
• Top 3 Consumers View
• FAQts View
• Alarms View
76 Foglight Cartridge for Active Directory
User and Reference Guide
Figure 11
Note You can also click the view in Explorer link on the Sites Environment Summary (All Sites)
view.
Cartridge for Active Directory Views 77
Site Views
Figure 12
78 Foglight Cartridge for Active Directory
User and Reference Guide
Note You can also click the view in Explorer link on the Site Environment Summary view for the
selected site.
Embedded Views
In addition to the site tombstone, this view is made up of the following embedded
views:
• Top 3 DS Directory Reads/Sec View
• Top 3 LDAP Bind Times View
• Top 3 Replication Queue Length View
• Top 3 CPU Consumers View
• Top 3 Memory Consumers View
• Top 3 Network Consumers View
• Top 3 Storage Consumers View
• Domain Controllers View
• Alarms View
Cartridge for Active Directory Views 79
Domain Controller Views
Figure 13
80 Foglight Cartridge for Active Directory
User and Reference Guide
Note If you would prefer to view a list of DCs, instead of tiles for each DC, select .
You can then use the search controls to the right to filter your list of DCs.
Note If the Server Health metrics are not appearing on this view, check the agent’s host detail
collection interval value. By default, the VMWare cartridge will be used to collect basic host
metrics (CPU, Memory, Network, Storage). If the VMWare cartridge is not being used to
monitor the agent instance on the selected DC, you must enable the host detail collection
by setting its collection interval to a value between 1 and 10 minutes.
Cartridge for Active Directory Views 81
Domain Controller Views
Figure 14
Note You can also click a DC’s tombstone in the Domain Controllers Environment Summary (All
DCs) view to display this view.
82 Foglight Cartridge for Active Directory
User and Reference Guide
Embedded Views
In addition to the DC tombstone, the following embedded views are displayed:
• Host Monitor View
• NOTE: When the host machine is a virtual machine that is being monitored by the
Cartridge for VMWare or Cartridge for Hyper-V, this view is replaced with two views: one
that displays the name of the virtual machine and one that displays the name of the host
server.
• Health View
• Server Health View
• Top AD Metrics View
• FAQts View
• Alarms View
Figure 15
Note You can also click the view in Explorer link on the Domain Controllers Environment
Summary (All DCs) view.
84 Foglight Cartridge for Active Directory
User and Reference Guide
Note If the resource utilization metrics and data are not appearing on this view, check the agent’s
host detail collection interval value. By default, the VMWare cartridge will be used to collect
basic host metrics (CPU, Memory, Network, Storage). If the VMWare cartridge is not being
used to monitor the agent instance on the selected DC, you must enable the host detail
collection by setting its collection interval to a value between 1 and 10 minutes.
Cartridge for Active Directory Views 85
Domain Controller Views
Figure 16
Note You can also click the view in Explorer link on the Domain Controller Environment
Summary view for the selected DC.
86 Foglight Cartridge for Active Directory
User and Reference Guide
Figure 17
Cartridge for Active Directory Views 87
Domain Controller Views
Embedded Views
This view is made up of the following embedded views:
• Processor View
• Memory View
• Storage View
• Network View
88 Foglight Cartridge for Active Directory
User and Reference Guide
Figure 18
Figure 19
Figure 20
File Bytes Read Per Second. This graph charts the total number of
file bytes read per second over the specified time interval. It
provides a comparison of the File Bytes Read counter against the
computed average.
Bytes Written. This counter displays the rate at which file bytes are
being written to the database each second.
File Bytes Written Per Second. This graph charts the total number
of file bytes written per second over the specified time interval. It
provides a comparison of the File Bytes Written counter against the
computed average.
File Operations. This counter displays the rate at which file
operations are being performed against the database each second.
File Operations Per Second. This graph charts the total number of
file operations performed per second over the specified time
interval. It provides a comparison of the File Operations counter
against the computed average.
NTDS.DIT Queue Length. The counter displays the current queue
length of the NTDS.DIT database. The graph charts the queue
length over the specified time interval. It provides a comparison of
the Queue Length counter against the computed average.
Database Transactions Per Second. This counter displays the rate
at which database transactions are taking place each second.
NTDS.DIT Transactions Per Second (Windows 2008 only). This
graph charts the number of transactions being performed per second
over the specified time interval.
Note This view will be empty if the DC is not running Windows 2008.
Where to go next Clicking a counter or graph in this view displays a metrics popup
that describes the counters and provides more detailed data points.
94 Foglight Cartridge for Active Directory
User and Reference Guide
Health View
This embedded view is part of the Domain Controller Environment Summary for an
individual DC in the Active Directory Environment dashboard.
Health View
Description This view displays a summary of the present state of the selected
DC’s computer resources.
Data displayed CPU. The status indicator represents the alarm of highest severity
that is outstanding for the host CPU counters.
Memory. The status indicator represents the alarm of highest
severity that is outstanding for the host memory counters.
Network. The status indicator represents the alarm of highest
severity that is outstanding for the host network counters.
Storage. The status indicator represents the alarm of highest severity
that is outstanding for the host storage counters.
98 Foglight Cartridge for Active Directory
User and Reference Guide
Health View
AD. The status indicator represents the alarm of highest severity that
is outstanding for the Active Directory related counters.
Where to go next Drill down on:
• Health Counter. Displays an Alarms popup listing the current
alarms that are outstanding for the selected computer resource.
Note When the host machine is a virtual machine that is being monitored by the Cartridge for
VMWare or Cartridge for Hyper-V, this view is replaced with two views: one that displays the
name of the virtual machine and one that displays the name of the host server.
IP Subnets View
This embedded view is part of the Site Environment Summary for an individual site in
the Active Directory Environment dashboard.
IP Subnets View
Description This view lists the IP subnets associated with the selected site.
Where to go next N/A
102 Foglight Cartridge for Active Directory
User and Reference Guide
ICMP Ping Response Time. This graph charts the round trip time it
took for packets from the local host to reach designated computers
during the specified time interval. It provides a comparison of the
Ping Response Time counter against the computed average.
LDAP Binds and Searches. These indicators display the rate at
which LDAP clients perform bind and search operations.
DS Threads in Use. This graph charts the number of threads
currently servicing client API calls. It provides a comparison of the
DS Threads In Use counter against the computed average.
LDAP Client Sessions. The metrics indicator shows the current
number of connected LDAP client sessions. The graph charts the
number of LDAP client sessions connected to the selected DC over
the specified time interval. It provides a comparison of the LDAP
Client Sessions counter against the computed average.
Where to go next Clicking a graph in this view displays a metrics popup that describes
the counters and provides more detailed data points.
Memory View
This embedded view is part of the Resource Utilization Details view. To display this
view, select the Details link in the upper right corner of the Resource Utilization view
for an individual DC in the adExplorer dashboard.
Memory View
Description This view displays memory utilization metrics for the selected DC.
The counters and indicators change colors based on overall
consumption or deviation from normal levels.
Data displayed Available Bytes. Displays the amount of memory (in MB) available.
Committed Bytes. Displays the percent of total bytes committed.
Memory Available and Consumed. This graph charts memory
capacity and memory consumed during the specified time interval.
It provides a comparison the following counters:
• Memory Capacity. Shows the maximum or minimum amount of
memory a computer or hardware device is capable of having.
• Memory Consumed. Shows the amount of memory being used.
104 Foglight Cartridge for Active Directory
User and Reference Guide
Memory View
Memory Cache Bytes. This graph charts the size of the file system
cache over the specified time interval. It provides a comparison of
the Cache Bytes counter against the computed average.
Page Rate Per Second. The counter displays the rate at which pages
are currently being read from or written to memory in order to
resolve hard page faults.
Memory Pages Per Second. This graph charts the rate at which
pages are read from or written to memory in order to resolve hard
page faults for the specified time interval.
Memory Pool Paged and Non Paged Bytes. This graph shows a
comparison of the following counters:
• Memory\Pool Paged Bytes. Shows the portion of shared system
memory that can be paged to the disk paging file.
• Memory\Pool Nonpaged Bytes. Shows the portion of physical
memory that can be accessed from any address space without
incurring paging I/O.
.NET CLR Exceptions Thrown Per Second. This graph charts the
number of exceptions thrown per second during the specified time
interval.
.NET CLR Percent Time in Garbage Collection. This graph charts
the percentage of time being spent performing garbage collections
during the specified time interval.
.NET CLR Memory Bytes in All Heaps. This graph charts the
memory usage by all managed resources during the specified time
interval.
Where to go next Clicking a graph in this view displays a metrics popup that describes
the counters and provides more detailed data points.
Network View
This embedded view is part of the Resource Utilization Details view. To display this
view, select the Details link in the upper right corner of the Resource Utilization view
for an individual DC in the adExplorer dashboard.
Cartridge for Active Directory Views 105
Description of Embedded Views
Network View
Description This view displays network utilization metrics for the selected DC.
The counters and indicators change colors based on overall
consumption or deviation from normal levels.
Data displayed Network Interface. Displays a list of network interfaces available
on the selected DC. Selecting a network interface in this view
displays the following metrics for the selected interface.
• Available Bandwidth. This counter displays the current
percentage of bandwidth that is available.
• Bandwidth. This graph charts the network bandwidth (MB/sec)
for the selected network interface over the specified time interval.
It provides a comparison of this counter against the computed
average.
• Output Queue Length. This graph charts the length of the output
queue over the specified time interval. It provides a comparison of
this counter against the computed average.
• Send & Receive Rates. These counters display the rate at which
data is sent and received over the selected network interface.
• Packet Outbound Errors. This graph charts the number of
outbound packets that could not be transmitted due to errors. It
provides a comparison of this counter against the fatal, critical
and warning levels.
Where to go next Clicking a graph in this view displays a metrics popup that describes
the counters and provides more detailed data points.
Processor View
This embedded view is part of the Resource Utilization Details view. To display this
view, select the Details link in the upper right corner of the Resource Utilization view
for an individual DC in the adExplorer dashboard.
106 Foglight Cartridge for Active Directory
User and Reference Guide
Processor View
Description This view displays processor utilization metrics for the selected DC.
The counters and indicators in this view change color based on
overall consumption or deviation from normal levels.
Data displayed System\Processor Queue Length. This counter indicates the
number of threads each processor is currently servicing. This
number should not be greater than five per processor.
Processor Queue Length can be used to identify when processor
contention or high CPU utilization is caused by the processor
capacity being insufficient to handle the assigned workload.
Percent Processor Time. This graph provides a comparison of the
following counters:
• Processor(_Total)\% User Time. Shows the percentage of time
that is spent in user mode. User mode is a restricted processing
mode designed for applications, environment subsystems, and
integral subsystems.
• Processor(_Total)\% Privileged Time. Shows the percentage of
time that is spent in privileged mode. Privilege mode is a
processing mode designed for operating system components and
hardware-manipulating drivers. It allows direct access to hardware
and memory.
• Processor(_Total)\% Processor Time. Shows the percentage of
time that the processor is executing application or operation
system processes.
Where to go next Clicking a graph in this view displays a metrics popup that describes
the counters and provides more detailed data points.
Note If the resource utilization metrics and data are not appearing on this view, check the agent’s
host detail collection interval value. By default, the VMWare cartridge will be used to collect
basic host metrics (CPU, Memory, Network, Storage). If the VMWare cartridge is not being
used to monitor the agent instance on the selected DC, you must enable the host detail
collection by setting its collection interval to a value between 1 and 10 minutes.
Cartridge for Active Directory Views 109
Description of Embedded Views
Note If the host metrics are not appearing on this view, check the agent’s host detail collection
interval value. By default, the VMWare cartridge will be used to collect basic host metrics
(CPU, Memory, Network, Storage). If the VMWare cartridge is not being used to monitor the
agent instance on the selected DC, you must enable the host detail collection by setting its
collection interval to a value between 1 and 10 minutes.
Statistics View
This embedded view is part of the Forest Environment Summary and Domain
Environment Summary when an individual forest or domain is selected in the Object
Tree view (Quick View) in the Active Directory Environment dashboard.
Statistics View
Description This view provides statistics regarding the Active Directory
accounts in the selected forest or domain.
Data displayed • Users. Indicates how many Active Directory user accounts are in
the selected forest or domain.
• Groups. Indicates how many Active Directory group accounts are
in the selected forest or domain.
• Computers. Indicates how many computer accounts are in the
selected forest or domain.
Where to go next N/A
112 Foglight Cartridge for Active Directory
User and Reference Guide
Storage View
This embedded view is part of the Resource Utilization Details view. To display this
view, select the Details link in the upper right corner of the Resource Utilization view
for an individual DC in the adExplorer dashboard.
Storage View
Description This view displays storage utilization metrics for the selected DC.
Data displayed Logical Disk Read and Write Time. This graph charts the
following counters:
• Logical Avg. Disk sec/Read. Shows the average time, in seconds,
it takes to read data from the disk.
• Logical Avg. Disk sec/Write. Shows the average time, in seconds,
it takes to write data to the disk.
Physical Disk Read and Write Time. This graph charts the
following counters:
• Physical Avg. Disk sec/Read. Shows the average time, in seconds,
it takes to read data from the disk.
• Physical Avg. Disk sec/Write. Shows the average time, in
seconds, it takes to write data to the disk.
Where to go next Clicking a graph in this view displays a metrics popup that describes
the counters and provides more detailed data points.
Uptime. Displays how long the server has been up and running.
Site. Displays the name of the site to which the selected DC
belongs.
Processors. Displays the number of CPUs on the selected DC.
Memory Capacity. Displays the memory capacity of the selected
DC.
Network Interfaces. Displays the number of network interfaces
available on the selected DC.
Storage Devices. Displays the number of storage devices on the
selected DC.
Where to go next N/A
Note Click on the status indicator to the left of a heading to display an alarm popup listing the
active alarms for the selected category.
Bytes Read. This counter shows the rate at which file bytes are read
from the database.
Bytes Read/Sec. This graph charts the rate at which file bytes are
read from the database over the specified time interval. It provides a
comparison of the File Bytes Read counter against the computed
average.
Bytes Written. This counter shows the rate at which file bytes are
written to the database.
Bytes Written/Sec. This graph charts the rate at which file bytes are
written to the database over the specified time interval. It provides a
comparison of the File Bytes Written counter against the computed
average.
Where to go next Clicking a counter or graph in this view displays a metrics popup
that describes the counters and provides more detailed data points.
Description When LDAP is selected, this view displays LDAP related metrics
for the selected DC. The counters and indicators change colors
based on overall consumption or deviation from normal levels.
Data displayed LDAP Bind Response Time. This metrics indicator shows the
amount of time it is took to complete the last LDAP bind request.
LDAP Bind Time. This graph charts the amount of time it took to
complete successful LDAP bind requests over the specified time
interval. It provides a comparison of the LDAP Bind Time counter
against the computed average.
DS Directory Reads. This counter shows the rate at which DS
directory reads are taking place.
DS Directory Reads Per Second. This graph charts the number of
DS directory reads taking place per second over the specified time
interval. It provides a comparison of the DS Directory Reads
counter against the computed average.
Where to go next Clicking a counter or graph in this view displays a metrics popup
that describes the counters and provides more detailed data points.
Cartridge for Active Directory Views 115
Description of Embedded Views
Description When Roles is selected, this view displays additional data about the
roles being performed by this DC.
Data displayed FSMO. A green check icon indicates whether this DC ‘owns’ the
following operations master roles:
• Schema Master
• Domain Naming Master
• Infrastructure Master
• RID Master
• PDC Emulator
DNS.
• SVR Record for DC Registered. When this check box is selected
it indicates that the SVR record for the selected DC is registered.
• DNS Server. When this check box is selected it indicates that this
DC is a DNS Server. If the DC is a DNS server, this view also
displays the rate at which queries are received and responses are
sent.
Global Catalog.
• Global Catalog. When this check box is selected it indicates that
this DC is hosting a Global Catalog.
• Global Catalog Search Response. This value displays the rate at
which it takes to perform a Global Catalog search.
Where to go next Drill down on:
Total Queries Received. (DNS Servers only) Displays a metrics
popup that describes the counter and a graph that charts the number
of queries received over the specified time interval.
Total Responses Sent. (DNS Servers only) Displays a metrics
popup that describes the counter and a graph that charts the number
of responses sent over the specified time interval.
Global Catalog Search Response. Displays a metrics popup that
describes the counter and a graph that charts data over the specified
time interval.
Cartridge for Active Directory Views 117
Description of Embedded Views
Trusts View
This embedded view is part of the Forest Environment Summary and Domain
Environment Summary when an individual forest or domain is selected in the Object
Tree view (Quick View) on the Active Directory Environment dashboard.
Trusts View
Description This view contains a list of inbound and outbound trusts established
for the selected forest or domain.
Data displayed Inbound. Displays the name of the forests/domains that trust the
current forest or domain.
Outbound. Displays the name of the forests/domains that the
current forest or domain trusts.
122 Foglight Cartridge for Active Directory
User and Reference Guide
Trusts View
Type. For both Inbound and Outbound trusts, this column displays
the state of each trust relationship:
• Tree Root - the trust relationship is between two tree root domains
in the forest.
• Parent - the trust relationship is from a parent domain to a child
domain.
• Child - the trust relationship is from a child domain to a parent
domain.
• External - the trust relationship is with a pre-Windows 2000 (NT)
domain.
• Non-Windows Kerberos Realm - the trust relationship is with a
Kerberos realm, which is a standard security and authentication
protocol.
• DCE Realm - the trust relationship is with a DCE realm.
• Shortcut - the trust relationship is between two domains in the
same forest that are not directly related.
Transitive. For both Inbound and Outbound trusts, this columns
indicates whether the trust is a transitive trust. Transitive trusts can
only exist between domains within the same domain tree or forest.
Where to go next N/A
6
Cartridge for Active Directory
Rules
The Foglight Cartridge for Active Directory includes a number of predefined rules to
monitor all critical components of Active Directory on a continuous basis to ensure that
the directory is functioning properly. The rules included in this cartridge alert you to key
conditions that may affect the health of Active Directory. Foglight allows you to modify
these predefined rules or create your own rules to ensure you are monitoring statistics
and alerting on conditions specific to your Active Directory environment.
The Cartridge for Active Directory provides an additional dashboard that can be used to
manage the cartridge’s rules. That is, the Cartridge for Active Directory rules can be
managed using one of the following dashboards:
• Manage Rules dashboard (Dashboards > Administration > Rules &
Notifications > Manage Rules)
• Active Directory Rules Management dashboard (Dashboards > Active
Directory > Rule Management)
This chapter describes the Active Directory Rule Management dashboard and explains
the tasks that can be performed from this dashboard. It also provides a description of the
rules used by the Cartridge for Active Directory to monitor your Active Directory
infrastructure.
Figure 1
Cartridge for Active Directory Rules 125
Active Directory Rule Management Dashboard
The Active Directory Rule Management dashboard displays the following information
about the Cartridge for Active Directory rules.
Column Description
Use the selection check box column to select one or more rules
in the list. Once selected, you can enable or disable the selected
rules using the buttons at the top of the table.
To select or clear all of the rules in the list, click on the check
box in the heading row.
Enabled Displays one of the following icons indicating whether the rule
is enabled or disabled:
- Enabled
- Disabled
Clicking the icon in this column will either disable or enable the
selected rule.
Column Description
Column Description
1 Select the rule in the Rule column or its corresponding graph icon in the
Fatal, Critical or Warning columns.
Note Hovering the cursor over a numeric value or graph icon will display the current
condition that is defined.
Note To define a condition for a rule, select the set rule icon in the corresponding
Fatal, Critical or Warning columns.
128 Foglight Cartridge for Active Directory
User and Reference Guide
2 On the Edit Rule view, edit the conditions, alarms, actions, schedules, behavior or
rule variables as required. After making your edits, select Save All.
For more detailed information on editing rules, see the Foglight Administration
and Configuration Help.
Note In the browser interface, open the Help tab in the action panel. Navigate to Using
Foglight > Administration and Configuration Help > Tuning Foglight for
Optimal Performance > Using Foglight Rules to Report on Bottlenecks. Scroll
to the bottom of that page to find a list of reference topics including procedures
explaining how to perform a variety of tasks related to rules.
1 Select the deactivated value or graph icon in the corresponding Fatal, Critical
or Warning columns.
• If you selected a deactivated value, on the Threshold dialog, select the
Activate check box and if desired modify the threshold value displayed. Select
Update.
• If you selected a deactivated graph icon, on the Edit Rule view, select the
Activate check box on the Conditions, Alarms & Actions tab. If necessary,
edit the conditions, alarms, actions, schedules, behavior or rule variable as
required. After activating and/or modifying the condition, select Save All.
2 To deactivate a condition, select the rule, active value or chart icon in the
corresponding Fatal, Critical or Warning columns.
• If you selected a value, on the Threshold dialog, clear the Activate check box.
Select Update.
• If you selected a rule or a graph icon, on the Edit Rule view, clear the Activate
check box on the Conditions, Alarms & Actions tab. After deactivating the
condition, select Save All.
Cartridge for Active Directory Rules 129
Rules Reference
Rules Reference
Foglight allows you to create flexible rules that can be applied to complex, interrelated
data from multiple sources within your distributed system. You can associate several
different actions with a rule, configure a rule so that it does not fire repeatedly, and
associate a rule with schedules to define when it should and should not be evaluated.
Different types of data can be used in rules, including registry variables, raw metrics,
derived metrics, and topology object properties.
There are two types of rules in Foglight: simple rules and multiple-severity rules. A
simple rule has a single condition, and can be in one of three states: Fire, Undefined, or
Normal. A multiple-severity rule can have up to five severity levels: Undefined, Fatal,
Critical, Warning, and Normal.
Rule conditions are regularly evaluated against monitoring data (metrics and topology
object properties collected from your monitored environment and transformed into a
standard format). Therefore, the state of the rule can change if the data changes. For
example, if a set of monitoring data matches a simple rule’s condition, the rule enters
the Fire state. If the next set does not match the condition, the rule exits the Fire state
and enters the Normal state.
A rule condition is a type of expression that can be true or false. When it evaluates to
true, the rule is said to fire, causing any actions that are associated with the rule or
severity level to be performed. You can configure a rule to perform one or more actions
upon entering or exiting each state. When a multiple-severity rule fires, an alarm also
appears in Foglight.
For more information, see the Foglight Administration and Configuration Guide or
online help.
The Cartridge for Active Directory includes the following Active Directory rules:
• Active Directory Host Services Rule
• Active Directory NTDS DIT Queue Length Rule
• Database File Bytes Read Per/sec Rule
• Database File Bytes Written Per/sec Rule
• Database File Operations Per/sec Rule
• Database - Time to Fill Logical Disk for NTDS.DIT Rule
• DC Connectivity Rule
• DC ICMP Ping Response Rule
130 Foglight Cartridge for Active Directory
User and Reference Guide
In addition, this cartridge may use the following Host Monitoring rules:
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
HostService : host.agents.type = 'ActiveDirectory'
Rule Definition
Conditions State
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Scope
AD_Database
Rule Definition
Conditions State
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Cartridge for Active Directory Rules 135
Rules Reference
Scope
AD_Database
Rule Definition
Conditions State
try{ Warning
return positive_delta(#fileBytesReadPersec#) > 0;
}
catch (Exception e) {return false;}
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Scope
AD_Database
Rule Definition
Conditions State
Scope
AD_Database
Rule Definition
Conditions State
Scope
AD_Database
Cartridge for Active Directory Rules 137
Rules Reference
Rule Definition
Conditions State
DC Connectivity Rule
Purpose
This rule determines if a DC is reachable from the Foglight Management Server
installation. That is, can you ping the server using its DNS name or IP address.
Scope
AD_DomainController
Rule Definition
Conditions State
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Scope
AD_DomainController
Rule Definition
Conditions State
Scope
AD_Dns
Cartridge for Active Directory Rules 139
Rules Reference
Rule Definition
Conditions State
Scope
AD_Dns
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
last(#DRAInboundBytesCompressedBetweenSitesBeforeCompressi Warning
onPersec for 1 minutes#).values(scope).size() > 0 &&
last(#DRAInboundBytesCompressedBetweenSitesBeforeCompressi
onPersec for 1
minutes#).values(scope).iterator().next().getValue().getMin() <
#DRAInboundBytesCompressedBetweenSitesBeforeCompressionP
ersec#
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
142 Foglight Cartridge for Active Directory
User and Reference Guide
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
indicates that the monitored DC is receiving changes, but is taking a long time to apply
them to the database.
An upward trend indicates growing replication traffic that could be hazardous to the
Active Directory environment if it continues.
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Cartridge for Active Directory Rules 147
Rules Reference
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
An upward trend indicates growing replication traffic that could be hazardous to the AD
environment if it continues.
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
150 Foglight Cartridge for Active Directory
User and Reference Guide
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
last(#DRAOutboundBytesCompressedBetweenSitesAfterCompression Warning
Persec for 1 minutes#).values(scope).size() > 0 &&
last(#DRAOutboundBytesCompressedBetweenSitesAfterCompression
Persec for 1
minutes#).values(scope).iterator().next().getValue().getMin() <
#DRAOutboundBytesCompressedBetweenSitesAfterCompressionPers
ec#
Cartridge for Active Directory Rules 151
Rules Reference
Scope
AD_Replication
Rule Definition
Conditions State
last(#DRAOutboundBytesCompressedBetweenSitesBeforeCompres Warning
sionPersec for 1 minutes#).values(scope).size() > 0 &&
last(#DRAOutboundBytesCompressedBetweenSitesBeforeCompres
sionPersec for 1
minutes#).values(scope).iterator().next().getValue().getMin() <
#DRAOutboundBytesCompressedBetweenSitesBeforeCompression
Persec#
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
154 Foglight Cartridge for Active Directory
User and Reference Guide
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
An upward trend indicates growing replication traffic that could be hazardous to the
Active Directory environment if it continues.
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Cartridge for Active Directory Rules 157
Rules Reference
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Scope
AD_Replication
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Cartridge for Active Directory Rules 161
Rules Reference
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Replication
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Note In order to monitor ESE counters, you must enable the Enable Extensible Storage Engine
(ESE) Queries option on the agent’s properties page. In addition, ESENT must be
registered with WMI. See the Managing Microsoft Active Directory Installation Guide for
prerequisite information regarding monitoring ESE counters.
Scope
AD_Database
Rule Definition
Conditions State
Scope
AD_GlobalCatalog
Cartridge for Active Directory Rules 171
Rules Reference
Rule Definition
Conditions State
Scope
AD_GlobalCatalog
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
ASPNETApplications
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
ASPNET
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
HostCPUs : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
HostCPUs : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
HostCPUs : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
DotNetFrameworkMemory
Rule Definition
Conditions State
true Warning
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
DotNetFrameworkMemoryInstance
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
LogicalDisk : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
LogicalDisk : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
Memory
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
Memory
Rule Definition
Conditions State
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
Memory
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
Memory
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
Memory
186 Foglight Cartridge for Active Directory
User and Reference Guide
Rule Definition
Conditions State
Memory\Pool Paged Bytes shows the portion of shared system memory that can be
paged to the disk paging file.
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
Memory
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
NetworkInterface : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
NetworkInterface : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'} and
outboundErrors > 0
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
PhysicalDisk : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
PhysicalDisk : host.agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
Host : agents.type in {'ActiveDirectory', 'ExchangeAgent'}
Rule Definition
Conditions State
Note The host monitoring rules are only used if the Cartridge for VMWare is NOT collecting the
host metrics. If the host metrics are being collected by the Cartridge for VMWare, the host
monitoring rules defined for that cartridge will be used instead.
Scope
LogicalDisk
Rule Definition
Conditions State
Rule Definition
Conditions State
Scope
AD_Ldap
Rule Definition
Conditions State
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Scope
AD_Ldap
Rule Definition
Conditions State
Scope
AD_Ldap
Rule Definition
Conditions State
Scope
AD_Ldap
Rule Definition
Conditions State
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Scope
AD_Ldap
Rule Definition
Conditions State
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Scope
AD_Ldap
Rule Definition
Conditions State
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Scope
AD_Ldap
Cartridge for Active Directory Rules 199
Rules Reference
Rule Definition
Conditions State
Note This rule is disabled by default. To enable this rule, click the icon in the corresponding
Enabled cell on the Active Directory Rule Management dashboard.
Scope
AD_Ldap
Rule Definition
Conditions State
Scope
AD_Dns
Rule Definition
Conditions State
Index
A D
action panel 13 dashboard
activate a rule condition 128 accessing 20
Active Directory agent properties 47 Active Directory Environment 20
Active Directory Enterprise view 29 adAlarms 27
Active Directory Environment dashboard 20 adExplorer 29
Active Directory Environment Overview 21 Agent Management 36, 40
Active Directory Host Services rule 133 reports 53
Active Directory NTDS DIT Queue Length rule 134 Rule Management 37, 124
Active Directory Rule Management dashboard 124 Database - Time to Fill Logical Disk for NTDS.DIT
adAlarms dashboard 27 rule 136
adExplorer dashboard 29 Database File Bytes Read Per Sec rule 134
adExplorer Primary view 31 Database File Bytes Written Per Sec rule 135
Agent Management dashboard 36, 40 Database File Operations Per Sec rule 136
Agent Management list 45 Database Performance Health view 92
Agent Setup Wizard 41 DC Connectivity rule 137
alarm indicators 18 DC ICMP Ping Response rule 138
Alarms List view 28 deactivate a rule condition 128
Alarms Overview 27 disable a rule 127
Alarms view 25, 35 display panel 13
Answer view 26 DNS Total Queries Received Per Sec rule 138
DNS Total Responses Sent Per Sec rule 139
B Domain Controller Database view 88
Domain Controller Details view 94
breadcrumb trail 14
Domain Controller Environment Summary view
all DCs 79
C individual DC 80
Categories view 26 Domain Controller Explorer Summary view
contacting Quest 10 all DCs 82
Core Services view 35, 92 individual DC 84
202 Foglight Cartridge for Active Directory
User and Reference Guide
Domain Controller LDAP view 89 DS Security Descriptor Propagation Events rule 159
Domain Controller Replication view 90 DS Security Descriptor Suboperations Per Sec
Domain Controllers view 34, 95 rule 159
Domain Environment Summary view
all domains 66 E
individual domain 67
edit a rule condition 127
Domain Explorer Summary view
edit alarm threshold in rule 128
all domains 69
ESE Database Cache Percent Hit rule 160
individual domain 70
ESE Database Cache Size rule 161
DRA Inbound Bytes Compressed (Between Sites, Be-
ESE Database Page Fault Stalls Per Sec rule 163
fore Compression) Per Sec rule 140
ESE Database Page Faults Per Sec rule 162
DRA Inbound Bytes Not Compressed (Within Site) Per
ESE Log Record Stalls Per Sec rule 164
Sec rule 140
ESE Log Threads Waiting rule 165
DRA Inbound Bytes Total Per Sec rule 141
ESE Log Writes Per Sec rule 166
DRA Inbound Full Sync Objects Remaining rule 142
ESE Table Open Cache Hits Per Sec rule 167
DRA Inbound Object Updates Remaining in Packet
ESE Table Open Cache Misses Per Sec rule 168
rule 145
ESE Table Open Cache Percent Hit rule 169
DRA Inbound Objects Applied Per Sec rule 143
ESE Table Opens Per Sec rule 170
DRA Inbound Objects Filtered Per Sec rule 144
DRA Inbound Objects Per Sec rule 145
DRA Inbound Properties Applied Per Sec rule 146 F
DRA Inbound Properties Filtered Per Sec rule 147 FAQts view 24
DRA Inbound Properties Total Per Sec rule 148 navigation tab 25
DRA Inbound Values (DNs only) Per Sec rule 148 Foglight navigation
DRA Inbound Values Total Per Sec rule 149 action panel 13
DRA Outbound Bytes Compressed (Between Sites, Af- alarm and status indicators 18
ter Compression) Per Sec rule 150 breadcrumb trail 14
DRA Outbound Bytes Compressed (Between Sites, Be- browser interface panels 12
fore Compression) Per Sec rule 151 dirll down actions 14
DRA Outbound Bytes Not Compressed (Within Site) Per display panel 13
Sec rule 152 lists 15
DRA Outbound Bytes Total Per Sec rule 152 mouse-over actions 18
DRA Outbound Objects Filtered Per Sec rule 153 navigation panel 13
DRA Outbound Objects Per Sec rule 154 time range 15
DRA Outbound Properties Per Sec rule 155 Forest Environment Summary view
DRA Outbound Values (DNs only) Per Sec rule 155 all forests 60
DRA Outbound Values Total Per Sec rule 156 individual forest 61
DRA Pending Replication Synchronizations rule 157 Forest Explorer Summary view
DRA Sync Requests Made rule 158 all forests 63
drill down actions 14 individual forest 64
Index 203
Host Network Available Bandwidth 188 Top 3 LDAP Bind Times view 119
Host Network Outbound Errors 189 Top 3 Memory Consumers view 119
Host Physical Disk Sec Avg Read 190 Top 3 Network Consumers view 120
Host Physical Disk Sec Avg Write 191 Top 3 Replication Queue Length view 120
Host Processor Queue Length 192 Top 3 Storage Consumers view 121
Host Storage Capacity 193 Top AD Metrics view 113
LDAP Bind Time 194 Topology view 30
LDAP Client Sessions 195 Trusts view 121
LDAP DS Directory Reads Per Sec 196
LDAP DS Threads in Use 196 V
LDAP Kerberos Authentications 197
view
LDAP NTLM Authentications 198
Active Directory Enterprise 29
LDAP Searches Per Sec 198
Active Directory Environment Overview 21
LDAP Successful Binds Per Sec 199
adExplorer Primary view 31
SVR Record Registered 200
Alarms 25, 35
Rule Management dashboard 37, 124
Alarms List 28
Alarms Overview 27
S Answer 26
search controls 16 Categories 26
Server Health view 110 Core Services 35, 92
Site Environment Summary view Database Performance Health 92
all sites 72 Domain Controller Database 88
individual site 74 Domain Controller Details 94
Site Explorer Summary view Domain Controller Environment Summary
all sites 76 all DCs 79
individual site 77 individual DC 80
Statistics view 111 Domain Controller Explorer Summary
status indicators 18 all DCs 82
Storage view 112 individual DC 84
Summary and Resource Information view 35, 112 Domain Controller LDAP 89
Summary view 33 Domain Controller Replication 90
support 10 Domain Controllers 34, 95
SVR Record Registered rule 200 Domain Environment Summary
all domains 66
T individual domain 67
Domain Explorer Summary
technical support 10
all domains 69
time range 15
individual domain 70
Top 3 Consumers view 117
FAQts 24
Top 3 CPU Consumers view 118
navigation tab 25
Top 3 DS Directory Reads Per Sec view 118
206 Foglight Cartridge for Active Directory
User and Reference Guide