Operational monitoring tools including System Center, Azure Monitor
Makes me think of the scene from Airplane with the AutoPilot blow-up, similarly parallel to engineer experiences talking about the SCOM Web Console configuration. I’m ready to dispel some myths to document securing the ‘SCOM Web Console for authentication’ Quick outline Knowledge Articles to aid with ‘SCOM WebConsole settings for authentication’ Configuring … Continue reading “SCOM WebConsole settings for authentication”
Sometimes as the monitoring admin, you may be responsible to secure your servers, being told from Security/Cyber Teams about new vulnerabilities. The vulnerabilities may be from Tanium, ACAS, Tenable or other security tools. This article is how to help you secure related SCOM web console, and SSRS reporting sites against Unconstrained Delegation vulnerabilities CVE-2020-17049, … Continue reading “Check your delegation settings”
SCOM hotfix released for WebConsole/APM on SCOM2012R2 and above, time for another SCOM shot! Don’t forget your vaccination card 🙂 Let’s get started. Time to fix the vulnerability for ‘SCOM hotfix released for WebConsole/APM on SCOM2012R2 and above’. Read the support article, and assess what versions you have in your sandbox and production. Once … Continue reading “WebConsole APM hotfix for SCOM2012R2 and above”
SCOM 2016 web console hot fix Security teams may be contacting you for CVE-2020-1331 vulnerability on the 2016 web console. In my example, the Tenable scanner listed ALL SCOM management group servers – under SCOM2016/2019). NOTE KB does not install on server, so does not show up under ‘Installed Updates’ Background HotFix DLL … Continue reading “SCOM 2016 web console hot fix released”
FYI – Updated 24 June 2022 What are the MMA Agent and SCOM Agent version numbers? This idea sprung from a discussion with Sr. PFE Brian Barrington, and it got me wondering…See below for more details on OMS/MMA, and SCOM agent versions, as well as how to verify agent from PowerShell. … Continue reading “MMA Agent and SCOM Agent version numbers”
Stay with me here, this is for the SCOM management group installation So first, let’s research and figure out what the experts are doing, and what the install guides exist. Researching expert published documentation helps us understand the options, and we can dive into some of the reasons why. SCOM Security (KH blog ) SQLRights … Continue reading “Why not to use Local System for your core SCOM accounts”