Parse Events via PowerShell into table. Ever have need to parse an event, and grab a field from the event description, then perform some action after that? Here’s some PowerShell that may help you first to create a table, then setup columns, gather data, then parse what you need, and run a command to …
Category Archives: Troubleshooting
Mining Windows Event Log
Use Get-WinEvent to use XML and filters from event viewer, to mine an event, including examples for a specific string, from a specific event, in a specific event log? Hopefully this post will help with a few tips to simplify monitoring for events, whether in AzMon, SCOM, or via PowerShell. …
Identify orphaned agent properties
Back again, I’m going to ‘Identify orphaned agent properties’. For instance, does an agent still show up under Windows Computer, or more classes, like Windows Operating System? Typically we have handled this by using Holman’s purge blog. Deleting and Purging data from the SCOM Database First, my thanks to …
Need to find the command UNIX pack runs for perf counter
Have you ever needed to find the command UNIX pack runs for perf counter? Say the processor time value doesn’t match what the Unix admin may be saying SCOM is showing. Many times you can look at the SCOM management pack, and those commands trace back to the UNIX library. Background: …
Continue reading “Need to find the command UNIX pack runs for perf counter”
UNIX Logical Disk classes
Time to talk about SCOM2019 UNIX classes! Just came across an example where the UNIX Logical disk class was targeted. Did you know: This class in the UNIX library is not like the Windows library, where Logical Disk has a matched discovery. Logical Disk is broke out to the various UNIX flavors, …
SharePoint Management framework Private Preview
Do you have an Enterprise SharePoint farms that you manage health and performance via custom scripts? Have you used SETH to manage SharePoint 2010 problems with the farm(s)? Would you want a scalable tool you can add your own scripts and enable/check, and then alert on what you want? Background SharePoint Engineer …
Continue reading “SharePoint Management framework Private Preview”
Troubleshooting Service Map pack
Updated 14 Mar 2019 If you get these exceptions like me, the issue has been raised, with a deliverable targeted for SCOM2019UR1. Disable the rule to reduce noise. Are you using Service Map Management pack, and getting errors? This alert is based on the 46651/46652 event ID in …
Scripting SCOM Registry key tweaks
Time to tune! Had some requests to script the registry tweaks for SCOM Starting off with Holman’s blog entry … TechNet Gallery download here Save .txt file as .ps1 On SCOM Management server(s) Close out any SCOM Console session (to prevent SDK errors) Run as administrator in PowerShell window …
Workflow Manager Addendum MP for SQL Aliases
A SQL Alias is kinda like wearing disguise glasses… From a security perspective, you can make things difficult for attackers by specifying a SQL alias and different port for SQL. Symptom – discovery fails for WFM pack Trying to monitor and figure out what the real database name, instance, etc. …
Continue reading “Workflow Manager Addendum MP for SQL Aliases”
Test fire any event on any server from any application
Golden Oldies – always popular (tools vs music) Old Holman blog that’s still relevant, even more powerful than EventLog Explorer Basically anyone who wants to test fire events off a SCOM MP should use this tool. Event Create, write-eventlog all have limitations (certain event sources that can be used to create events, or event ID number …
Continue reading “Test fire any event on any server from any application”