scom1801 Archives - Kevin Justin's Blog

Service Map – Setting up SCOM management group

It’s time to get my SCOM MG running Service Map

Nothing like seeing what an application actually does, mapping ports a server is using, and who the server talks to!

From the docs site – https://docs.microsoft.com/en-us/azure/monitoring/monitoring-service-map-scom

Download Management Pack

Let’s start with the pack download

Download Management Pack

Install Management pack

Choose your preference

PowerShell (as admin)

Import-SCOMManagementPack -FullName “S:\monadmin\backup\$date”

In case you need help – TechNet article

Lab Example

Import-SCOMManagementPack -FullName “S:\MonAdmin\SCOM\Management packs\Service Map – Blue Stripe for SCOM – OMS\v1.0.0.6\Microsoft.SystemCenter.ServiceMap.mpb”

Import via SCOM Console

Configure the Service Map integration

In SCOM Console, click on Administration Tab

Navigate to the Operations Management Suite, and expand for the Service Map selection

Click ‘Add workspace’

Paste in your Tenant ID, Application ID, and Service Principal Key that you set up prior

Click Next

Verify Workspace Information
Click Next

Two options – if you don’t have any Windows Computer based groups in your MG, skip down to Server Selection

If there are Machine Groups to add, click ‘Add/Remove’

Click Next to select individual servers

Click Add

Click OK to close window

Click Next to move to next window

NOTE

Speed to fetch information is based on a rule see docs site
In the Server Selection window, you configure the Service Map Servers Group with the servers that you want to sync between Operations Manager and Service Map. Click Add/Remove Servers.

For the integration to build a distributed application diagram for a server, the server must be:

Managed by Operations Manager
Managed by Service Map
Listed in the Service Map Servers Group

From <https://docs.microsoft.com/en-us/azure/monitoring/monitoring-service-map-scom>

Setup proxy if needed

Click Add Workspace

Use Service Map

Time to Use the tool – https://docs.microsoft.com/en-us/azure/monitoring/monitoring-service-map

Verifying Servers specified in Service Map

Verify group

SCOM Console > Authoring Tab > Groups

Look for > Service Map

View Group members or look at Explicit tab

Troubleshooting

On Management Server (MS), Operations Manager Event log

PowerShell

get-eventlog -logname “Operations Manager” -newest 25

# This command will help if you get stuck on the workspace

get-eventlog -logname “Operations Manager” -Source “Operations Manager” -newest 25 | ? {$_.eventID -eq 6400 } |fl

GUI

Filter by Error,Warning

Install Azure Log Analytics Service Map Dependency Agent

To make all this work, sometimes, it seems like a slot machine, deposit your quarter, and hope you hit the jackpot!

So to get started, you probably have a list of computers where you have the MMA agent, and want to install Service Map to see how and who the computers are talking (to)

Click on Log Analytics

Click on your Subscription

Click on Service Map

Click on the Download link for Windows or Linux

Save file

Take saved file and copy to computer

GUI method

If you want a PowerShell method, Daniel Orneling has a great blog and Gallery TechNet script that will help

Docs site link has more details

Execute the InstallDependencyAgent-Windows.exe

Answer yes for UAC elevation

Click I Agree

Click Finish

Verify Agent installed

NOTE: If installing for SCOM, it's based on the Rule 'Microsoft.SystemCenter.ServiceMapImport.Rule'

https://docs.microsoft.com/en-us/azure/monitoring/monitoring-service-map-scom#configure-rules-and-overrides

PowerShell

get-eventlog -logname “Operations Manager” -Source “HealthService” -newest 25 | ? {$_.eventID -eq
1201 } |fl

get-service MicrosoftDependencyAgent

Event Viewer

Azure Log Analytics Service Map Planning and Pre-reqs

My grandfather said two things:

An ounce of prevention is worth a pound of manure

Death and taxes are part of life

Planning out a deployment is a good thing.

My best friend would say “No one plans to fail, they just fail to plan”

This will be a multi-part blog – breaking out the high level steps, and my experience getting the solution set up.

What do we need for Service Map?

Azure connectivity
- Setup Log Analytics workspace on MMA/SCOM agent article
- Troubleshooting onboarding issues KB,
  - Check for Events in Operations Manager event logs blog
Computers in scope for visualization
- What computers (Windows or Linux)
- Pricing FAQ
Dependency agent installed on computers
- Configure
Azure Service Principal
- (think of it as an SSH shared key ID/password for Azure Apps to communicate)
- Docs article

High level steps

Overview blog
Install the MMA agent blog
Install the dependency agent blog
Configure Azure Service Principal blog
Configure Service Map on SCOM blog

What ID’s is SCOM using

Ever need to audit what ID’s SCOM is using?

Maybe you have to figure out how someone else setup SCOM.

Did they set up SCOM as recommended for best practices with different AD accounts per role?

If the ID’s are not logged during install, it’s a little more difficult to figure out what ID was used.

Domain Account for ALL services,
Enter in the unique DOMAIN\OMAA, DOMAIN\OMDAS, DOMAIN\OMREAD, DOMAIN\OMWRITE

Try these PowerShell commands to find what SCOM is using.

ON MS (from PowerShell (don’t need admin unless you’re restarting services)

$Services = ( Get-WmiObject -Class Win32_Service )

$Services | ? { $_.Name -eq “OMSDK” -OR $_.Name -eq “cshost” -OR $_.Name -eq “HealthService” } |

ft name,Startname,StartMode

ON SCOM DB’s, Reporting (from PowerShell (don’t need admin unless you’re restarting services)

$Services = ( Get-WmiObject -Class Win32_Service )

$Services | ? { $_.DisplayName -like “*SQL*” } | ft name,Startname,StartMode

Source https://blogs.technet.microsoft.com/heyscriptingguy/2012/02/15/the-scripting-wife-uses-powershell-to-find-service-accounts/